Leak at Molotov
Around 13 November 2024, French streaming TV service Molotov disclosed a data breach exposing roughly 10.8 million email addresses, along with the names and dates of birth of users who had supplied them; no passwords or banking data were affected.
- Victim
- Molotov
- records
- 10.8M
On 13 November 2024, Molotov β the popular French streaming and live-TV platform β began notifying users that unauthorized third parties had accessed personal data held in its systems. The intrusion itself took place several weeks earlier, in October 2024, and was publicly confirmed in late November.
Roughly 10.8 million customer email addresses were exposed. For users who had entered the additional details in their profiles, names and dates of birth were also compromised. Molotov stated that passwords and banking information were not affected by the incident.
The exposed data categories included:
- Email addresses
- First and last names
- Dates of birth
Molotov reported the breach to France's data protection authority (CNIL) in line with its legal obligations and warned affected users to stay alert to phishing attempts, which are the principal risk given the nature of the leaked data. The intrusion was contained and access to banking and credential data was not breached.
Sources
- it-connect.frhttps://www.it-connect.fr/cyberattaque-molotov-tv-fuite-de-donnees-2024/
- bitdefender.comhttps://www.bitdefender.com/en-us/blog/hotforsecurity/molotov-french-streaming-platform-reports-data-breach-impacting-10-8-million-emails
- freenews.frhttps://www.freenews.fr/actu-du-net/streaming/molotov-victime-dun-vol-de-donnees-108-millions-de-comptes-concernes
- lebigdata.frhttps://www.lebigdata.fr/fuite-de-donnees-chez-molotov-10-millions-demails-voles-verifiez-le-votre