Skip to content
Data breachUnknown

8,571 KYC documents, leak claimed at Ayomi

On 24 February 2026, a threat actor claimed to have leaked a database of 8,571 KYC identity-verification documents belonging to clients and project owners of Ayomi, the French equity-crowdfunding and fundraising platform for SMEs and startups.

Victim
Ayomi
records
8.6K

On 24 February 2026, Ayomi β€” a French equity-crowdfunding and fundraising platform that connects SMEs and startups with private investors β€” was named in a threat actor's claim to have obtained and leaked a database of 8,571 KYC (Know Your Customer) identity-verification documents belonging to its clients and project owners.

KYC files of this kind are collected by Ayomi to verify the identity of investors and fundraisers on the platform, and typically bundle highly sensitive personal records. Based on the claim and on data tied to earlier extortion campaigns against the platform, the exposed material is reported to include:

  • National identity card images (front and back)
  • Bank account details (IBAN / RIB)
  • Investor and project-owner documents uploaded to the platform

The Ayomi name has recurred in French breach reporting: a group calling itself FOG claimed to have stolen data in early 2025, and in mid-2025 an actor using the handle "Gewko" sent extortion emails to clients claiming to have copied investors' identity documents and bank details after gaining elevated access to the site. This February 2026 entry reflects a fresh public claim of an 8,571-document leak; it should not be conflated with those earlier campaigns.

The claim has not been independently confirmed and Ayomi has not publicly acknowledged a breach, so the scope and authenticity remain unverified. Affected individuals are advised to watch for phishing and identity-fraud attempts and to report incidents to the CNIL and 17Cyber. Status is unknown pending confirmation.

Sources

  1. fuitesinfos.frhttps://fuitesinfos.fr/article/2026-02-24-ayomi
  2. zataz.comhttps://www.zataz.com/tag/fuite-de-donnees-ayomi/
  3. zataz.comhttps://www.zataz.com/le-site-ayomi-pirate-un-pirate-menace-les-clients/

Related incidents

Data breachUnknown

23,685 records: claimed leak at ATOA

A threat actor put a database from ATOA β€” a French real-estate tokenization and fractional-investment fintech β€” up for sale on a dark web forum, exposing roughly 23,685 user and financial records plus 326 full KYC archives containing passports, ID cards and banking details.

Victim
ATOA
Records
23.7K