Skip to content
Data breachUnknown

Leak at French Army

In late January 2026, a hacker claimed to have exfiltrated 2,971 files (about 4.5 GB, including 1,533 PDFs) from the French Army (Armée de Terre) via a compromised account, with documents marked 'Diffusion Restreinte' (restricted distribution) and internal technical guides.

Victim
French Army

On 31 January 2026, the French Army (Armée de Terre) — the land component of the French armed forces, with the leak tied to its light aviation arm (ALAT) — was the subject of a claimed data leak circulating on cybercrime forums. An attacker advertised a trove allegedly exfiltrated from a compromised account belonging to the institution.

The breach stems from an account compromise rather than a network-wide intrusion. Earlier reporting (around 26 January 2026, amplified by deputy Sébastien Latombe) flagged a compromised non-commissioned officer's account giving access to roughly 700 documents, with mentions of social engineering and password-reset attempts. The claimed cache was subsequently presented as far larger.

According to the hacker's claim, the leaked set comprises:

  • 2,971 files in total (about 4.5 GB), including 1,533 PDF documents
  • Documents stamped "Diffusion Restreinte" (restricted-distribution / for-official-use)
  • Internal technical guides and operational reference material

As of disclosure, no French military or government authority had publicly confirmed the breach, its scale, or the authenticity of the files, and the 2,971-file figure remains an unverified attacker claim. The status is therefore unconfirmed: authorities' core concern is whether the compromised access remained active and posed an ongoing exfiltration risk. This incident is distinct from the contemporaneous DCE Conseil breach, which separately exposed technical plans of the ALAT base in Le Cannet-des-Maures.

Sources

  1. armees.comhttps://armees.com/fuite-alerte-sous-officier-compromis-700-documents/
  2. solutions-numeriques.comhttps://www.solutions-numeriques.com/des-documents-techniques-sensibles-circulent-apres-une-compromission-de-compte-cloud/
  3. generation-nt.comhttps://www.generation-nt.com/actualites/fuite-donnees-dce-conseil-prisons-base-militaire-cybersecurite-2069196

Related incidents

Data breachOngoing

1,528 contacts at Nature & Cie, claimed leak

In late May 2026, a B2B commercial database attributed to French organic-food distributor Nature & Cie surfaced on a cybercriminal forum, exposing roughly 5,635 stores, over 1,500 professional contacts and around 1,500 sales-visit reports covering Biocoop, Naturalia and La Vie Claire partners.

Victim
Nature & Cie
Records
1.5K