Skip to content
Data breachUnknown

813,983 FFRandonnée members - claimed data leak

On 5 February 2026, the French Hiking Federation (FFRandonnée) was named in a claimed data leak said to expose the personal records of 813,983 members, part of the 2026 wave of breaches hitting French sports federations through shared licensee-management systems.

Victim
French Hiking Federation
records
814.0K
SectorOther

On 5 February 2026, the French Hiking Federation (Fédération Française de la Randonnée Pédestre, FFRandonnée) — the national governing body for hiking and rambling in France — was named in a claimed data leak alleged to expose the personal records of 813,983 members.

The incident falls within the wider series of cyberattacks that struck French sports federations throughout 2026. Investigators have linked many of these breaches not to direct intrusions at each organisation, but to compromised common service providers and shared licensee-management software whose security became a single point of failure across dozens of federations.

Based on the data categories repeatedly exposed across these federation breaches, the records at risk typically included:

  • Full names
  • Postal addresses
  • Email addresses
  • Phone numbers
  • Dates of birth
  • Membership / licence numbers

The aggregated nature of the data makes affected members prime targets for phishing and identity fraud. The breach was disclosed as part of the broader wave that prompted the CNIL (France's data-protection regulator) to place numerous sports federations under heightened scrutiny in 2026. The exact attack vector specific to FFRandonnée and the federation's formal response have not been publicly confirmed, so the status remains unknown.

Sources

  1. fuitesinfos.frhttps://fuitesinfos.fr/article/2026-02-05-federation-francaise-de-la-randonnee-pedestre
  2. idprotect.frhttps://idprotect.fr/cyberattaques-serie-noire-sport-francais-2026/
  3. leto.legalhttps://www.leto.legal/news/cnil-controles-federations-sportives-rgpd-2026

Related incidents

Data breachOngoing

Leak at La France Insoumise

In May 2026, France's La France Insoumise party had data from its Action Populaire activist platform stolen and posted on a hacking forum, exposing some 120,000 email addresses, 20,000 phone numbers, postal addresses and member activity spanning 2017-2026.

Victim
La France Insoumise