French national bank authority confirmed a major breach affecting 1.2 million bank accounts after stolen credentials of a government official were used to access FICOBA. The Directorate General of Public Finances restricted access, notified banks and affected users, and authorities including CNIL and prosecutors opened investigations. #FICOBA #CNIL
Keypoints
- 1.2 million bank accounts were exposed after an attacker used compromised official credentials to query FICOBA.
- The intrusion was detected in late January 2026 and access was immediately restricted to limit data extraction.
- Credential theft via interministerial exchange channels let the attacker masquerade as an insider and bypass perimeter defenses.
- FICOBA holds sensitive data like RIB/IBAN numbers, account holder identities, addresses and tax IDs, creating long-term identity theft and fraud risks.
- CNIL and prosecutors have launched investigations, affected users will be notified, and banks were alerted to warn customers.
Read More: https://thecyberexpress.com/french-national-bank-authority-breach/