Skip to content
Data breachOngoing

Or en Cash: new data leak confirmed in gold buying/reselling

On 4 April 2026, French gold buyer/reseller Or en Cash confirmed a data breach exposing the personal data of more than 70,000 customers — including identities, ID documents, contact details and transaction history — days after a similar attack on Gold Union.

Victim
Or en Cash
records
70.0K

On 4 April 2026, Or en Cash — one of France's leading gold buying and reselling companies — confirmed it had suffered a data breach following a security incident on its platform. The disclosure came just days after a comparable attack on competitor Gold Union, reinforcing the theory that gold dealers and their high-value customer bases are being deliberately targeted.

According to information passed to specialist breach trackers by the attackers, more than 70,000 customers may be affected. The company stated that its investigation was still ongoing and that it could not rule out broader exposure than initially identified.

The exposed data reportedly includes:

  • Full names (first name, surname) and civil-status details
  • Identity documents (e.g. national ID cards / CNI)
  • Postal addresses, email addresses and phone numbers
  • Account identifiers
  • Purchase and transaction history, including dates and types of operations, and gold investment/purchase data

Or en Cash acknowledged the incident publicly and indicated the matter remained under investigation. Given the categories of data involved — notably identity documents and financial/transaction records — affected customers face elevated risk of identity theft and targeted phishing or fraud.

Sources

  1. cyberattaque.orghttps://www.cyberattaque.org/or-en-cash-nouvelle-fuite-de-donnees-confirmee-dans-lachat-revente-dor/
  2. frenchbreaches.comhttps://frenchbreaches.com/blog/piratage-or-en-cash-apres-gold-union-les-vendeurs-dor-deviennent-ils-une-cible-des-hackers
  3. frenchbreaches.comhttps://frenchbreaches.com/alertes/or-en-cash-mnjjbpqtmu8dau5x93

Related incidents

Data breachOngoing

1,528 contacts at Nature & Cie, claimed leak

In late May 2026, a B2B commercial database attributed to French organic-food distributor Nature & Cie surfaced on a cybercriminal forum, exposing roughly 5,635 stores, over 1,500 professional contacts and around 1,500 sales-visit reports covering Biocoop, Naturalia and La Vie Claire partners.

Victim
Nature & Cie
Records
1.5K