Cyberattack at Les Restos du Cœur
On 11 February 2026, French food-aid charity Les Restos du Cœur suffered a cyberattack on an internal system, exposing the personal data of its employees and volunteers, including names, roles, departments, email addresses and phone numbers.
- Victim
- Les Restos du Cœur
On 11 February 2026, Les Restos du Cœur — one of France's largest food-aid charities, run largely by volunteers — confirmed it had been the target of a "malicious attack" that compromised one of its internal information systems.
The breach affected the personal data of the people who keep the organisation running: its salaried staff and its tens of thousands of volunteers. With ironic timing, the disclosure came as teams were mobilising on the ground for the charity's collection drive.
The data exposed in the incident reportedly included:
- Identity: first and last names
- Professional details: function, volunteer or employee status, and department of assignment
- Contact details: email addresses and, where provided, phone numbers
The charity confirmed the attack and the resulting data leak, with the incident reported on 13–14 February 2026. No financial or banking data was reported as part of the exposed records, and no precise count of affected individuals has been published. Those connected to the organisation were urged to stay vigilant against phishing and other follow-on attempts exploiting the leaked contact information.
Sources
- fuitesinfos.frhttps://fuitesinfos.fr/article/2026-02-13-les-restos-du-c-ur
- frenchbreaches.comhttps://frenchbreaches.com/alertes/les-restos-du-coeur-mlmi15wg2sz7g1nmwf7