The alert came late Wednesday. The Ministry of the Economy acknowledged that unauthorized access had targeted the national register of bank accounts, FOCOBA, the central tool that lists all accounts opened in France. According to Bercy (the Ministry of the Economy), up to 1,2 million accounts could be affected by this intrusion, described as "illegitimate access" carried out by a malicious actor.
The incident reportedly began in late January. The perpetrator allegedly impersonated an authorized official, granting them access to a portion of this sensitive database. FOCOBA contains highly strategic personal information: the account holder's identity, address, bank details (RIB or IBAN), and, in some cases, tax identification number. This data could be used to fuel targeted fraud attempts.
The revelation comes amid a surge in cyberattacks targeting government agencies and large corporations. This time, one of the most critical files in the French financial system has been compromised. The ministry, however, emphasizes that this was not a massive hack of the banking systems themselves, but rather unauthorized access to a centralized consultation tool.
Users alerted, vigilance increased
The Ministry of Economy and Finance (Bercy) states that work is underway to restore service under enhanced security conditions. Individuals whose data may have been accessed should receive, in the coming days, a notification informing them that access to their information has been detected.
In parallel, banks have been contacted to urge their customers to exercise extreme caution. The aim is to prevent any fraudulent use of data, particularly through phishing attempts or bank identity theft. Authorities recommend that, in case of doubt, customers keep all possible evidence, whether it be suspicious messages, website addresses, or screenshots, to facilitate any potential legal action.
While the exact scope of the consultations and their concrete consequences remain to be determined, the figure of 1,2 million accounts gives a sense of the scale of the impact. FOCOBA, used notably by the tax authorities and certain public services to identify accounts opened in the name of an individual or a company, constitutes a strategic link in the administrative chain.
This latest incident highlights the vulnerability of systems relying on individualized access. The impersonation of an authorized agent's credentials underscores that the vulnerability does not necessarily stem from a major technical breach, but sometimes from a circumvention of authentication procedures. In a digital environment where public databases hold sensitive information, the issue of access control becomes paramount. For users, the immediate challenge remains the careful monitoring of their accounts and vigilance against unusual requests. For the government, the incident necessitates a thorough review of the security protocols surrounding its most sensitive files to prevent such fraudulent access from recurring.
