Leak at French Cardiology Federation
Around 11 November 2025, the Fédération Française de Cardiologie disclosed that an unauthorized intrusion into its IT systems exposed members' personal data — including names, postal and email addresses, phone numbers and passwords. No banking or medical data was compromised.
- Victim
- French Cardiology Federation
On 11 November 2025, the Fédération Française de Cardiologie (FFC) — a French non-profit dedicated to cardiovascular disease prevention and awareness — suffered a data breach after an unauthorized third party gained access to its information systems over the 11 November long weekend. The federation publicly disclosed the incident on 28 November 2025.
According to the FFC and French outlet Next, the intrusion exposed personal data belonging to members. The federation stressed that no banking or medical data was compromised, but flagged that exposed passwords may not have been adequately protected.
Exposed data categories included:
- First and last names
- Postal addresses
- Email addresses
- Phone numbers
- Account passwords
On detecting the intrusion, the FFC moved quickly to secure its systems and block further unauthorized access. It took its "Mon espace" member portal offline indefinitely pending a full security audit, notified members by email, reported the breach to the French data protection authority (CNIL), filed a criminal complaint and began cooperating with the authorities. The total number of affected individuals was not disclosed.
Sources
- next.inkhttps://next.ink/211477/fuite-de-donnees-a-la-federation-francaise-de-cardiologie-y-compris-des-mots-de-passe/
- fedecardio.orghttps://www.fedecardio.org/nous-connaitre/incident-securite-fuite-donnees-federation-francaise-cardiologie/