Leak at Optic 2000
In early August 2025, French optician chain Optic 2000 was hit by a cyberattack — confirmed on 30 July 2025 and affecting four stores around Paris — that exposed customer records including names, social security numbers, dates of birth, postal addresses, phone numbers and optician details.
- Victim
- Optic 2000
On 8 August 2025, Optic 2000 — one of France's largest optician chains — was reported as the victim of a data breach affecting its customers. The group confirmed it had been targeted by a cyberattack on 30 July 2025, with four stores in the Paris area implicated: Paris, Nanterre, Houilles and Courbevoie.
The exposed data concerned customers of the affected stores and combined identity, contact and health-related fields, making the records especially sensitive given that they included social security numbers tied to optical care.
Categories of data reported as exposed:
- Title, last name and first name
- Social security number
- Date of birth
- Postal address
- Customer number
- Phone number
- Store concerned and the name of the treating optician
As an optician handling vision-care and reimbursement information, Optic 2000 manages personal data that overlaps with health records, raising the stakes of the exposure. The chain acknowledged the incident and scoped it to the four stores involved. This event is distinct from a separate, later breach of Optic 2000 franchisee invoice data in 2026, and the two should not be conflated.
Sources
- illicium.iohttps://illicium.io/cert/bulletins/ICB-2025-8004
- futura-sciences.comhttps://www.futura-sciences.com/tech/actualites/cybersecurite-optic-2000-auchan-optique-atol-lunetiers-francais-cibles-cyberattaque-precedent-134800/
- bonjourlafuite.eu.orghttps://bonjourlafuite.eu.org/#Optic%202000-2025-08-08