Leak at French Table Tennis Federation
On 19 September 2025, the French Table Tennis Federation (FFTT) disclosed a data breach in which an attacker used a compromised account to bulk-extract member records, exposing the personal data of as many as 254,000 licensees, though no banking or health data.
- Victim
- French Table Tennis Federation
On 19 September 2025, the French Table Tennis Federation (FFTT) β the national governing body for the sport in France β disclosed that it had been the victim of a cyberattack and theft of personal data belonging to its licensed members.
According to the federation, an attacker gained unauthorised access through a compromised account and used it to extract information from the licence database in bulk. The federation described the incident as "massive." Reporting indicates that as many as 254,000 members may be affected, though the FFTT did not confirm a precise figure.
The exposed data was limited to identity and contact information. No banking details or health data were involved. Compromised categories included:
- Licence number
- Last name, first name and gender
- Date and place of birth, nationality
- Postal address
- Email address
- Phone number
The FFTT filed a criminal complaint and notified the French authorities, including the national cybersecurity agency (ANSSI) and the data protection regulator (CNIL). It engaged technical providers to remediate the vulnerability and set up a dedicated mailbox (cyber@fftt.org) for member queries. The investigation was ongoing at the time of disclosure, and members were warned to be vigilant against phishing, fraud and identity-theft attempts leveraging the leaked data.
Sources
- fftt.comhttps://www.fftt.com/site/actualites/2025-09-19/communique-cyberattaque-et-vol-de-donnees
- funinformatique.comhttps://www.funinformatique.com/fuite_de_donnees/fftt-federation-francaise-de-tennis-de-table/
- stroople.comhttps://www.stroople.com/data-breach-observatory/data-breach-federation-francaise-de-tennis-de-table-2025/