The personal data of “a few hundred thousand” of Leroy Merlin customers are in the wild
In the life of a tech journalist, it can sometimes be difficult to follow certain sectors as the information keeps coming. Between the new developments linked to AI or the release of yet another smartphone, a new subject has continued to make headlines this year: cyberattacks. While France Travail has been hacked again a few days ago, and after Auchanon this Thursday, December 4, it is the turn of another brand from the Mulliez group, Leroy Merlin, to deplore the phenomenon.
The chain of stores specializing in DIY indicates that data from “a few hundred thousand” of its customers have been stolen. The “good” news is that it is not about banking data or passwords.
Advertisement
Only contact data is concerned, i.e. surnames, first names, telephone numbers and email and postal addresses. Enough to enable credible phishing campaigns despite everything. Caution in the coming weeks will therefore be especially important if you receive communication.
Leroy Merlin, which has not yet revealed the details of the attack, also indicated that the customers concerned were informed as soon as they became aware of the attack and that checks are underway. A complaint was filed and the CNIL was notified.
The identity of the pirates therefore remains unknown for the time being. Remember that last November the brand was boycotted by the RN following Leroy Merlin’s decision to withdraw advertising from the far-right media Frontières.
