Paris – A significant data breach has compromised the personal and banking information of approximately 1.2 million individuals in France, the Ministry of the Economy confirmed on Wednesday, February 18, 2026. The incident, which occurred in late January, involved unauthorized access to a national database containing details of accounts held at French banking institutions. The breach underscores the growing threat of cyberattacks targeting sensitive financial data and raises concerns about the security of personal information held by government agencies.
According to a statement released by Bercy, the French Treasury, an “actor malveillant” – a malicious actor – gained access to the system by usurping the credentials of a government official with authorized access. This allowed them to consult a portion of the national file that centralizes information on all bank accounts opened in France. The Ministry has mobilized its teams to manage the incident and secure access to the sensitive file.
The compromised data includes a range of personal and banking details, such as bank account coordinates (RIB/IBAN), the identity of the account holder, their address, and, in some cases, their tax identification number. This type of information is highly valuable to cybercriminals and could be used for identity theft, fraud, and other malicious activities. The scale of the breach, affecting 1.2 million accounts, makes it one of the most significant data security incidents in recent French history. You can locate more information about the Ministry of the Economy and Finances on their official website.
How the Breach Occurred
The Ministry of the Economy explained that the unauthorized access began at the end of January 2026. The malicious actor exploited a vulnerability by obtaining and using the login credentials of a public servant who had legitimate access to the database. While the exact method used to acquire these credentials remains under investigation, the incident highlights the importance of robust cybersecurity measures, including multi-factor authentication and regular security audits. The compromised file, as detailed by Bercy, is a centralized repository of information on all bank accounts opened in France.
What Information Was Compromised?
The data exposed in the breach is extensive and potentially damaging. It includes not only basic banking information like RIB/IBAN numbers, which are essential for transactions, but also personally identifiable information (PII) such as names, addresses, and, in some instances, tax identification numbers. This combination of data significantly increases the risk of identity theft and financial fraud. The Ministry of the Economy, officially known as the Ministère de l’Économie, des Finances et de la Souveraineté industrielle, énergétique et numérique since October 12, 2025, is currently assessing the full extent of the data compromised and working to mitigate the risks to affected individuals. The Ministry is located at 139 rue de Bercy, 75012 Paris, France, as noted in the official government directory.
Response and Next Steps
The French government is taking immediate steps to address the breach and protect affected citizens. Teams at Bercy are working to secure access to the compromised database and implement enhanced security measures to prevent future incidents. While the Ministry has not yet provided specific details on the measures being taken, it is expected that they will include a thorough review of security protocols, increased monitoring of system access, and potential improvements to data encryption. Roland Lescure currently serves as the Minister of the Economy and Finances, according to information available from Wikipedia.
Individuals affected by the breach are advised to remain vigilant and monitor their bank accounts and credit reports for any signs of unauthorized activity. They should also be cautious of phishing scams and other attempts to exploit the compromised data. The Ministry of the Economy has not yet announced specific guidance for affected individuals, but is expected to provide further information in the coming days.
The incident serves as a stark reminder of the ever-present threat of cyberattacks and the importance of protecting sensitive data. As investigations continue, authorities will likely focus on identifying the malicious actor responsible for the breach and understanding the full scope of the damage. The coming weeks will be critical in determining the long-term impact of this incident and implementing measures to prevent similar breaches in the future.
What are your thoughts on this data breach? Share your comments below and let us know how you protect your personal information online.