Leak at PayTrip
On 27 December 2025, French money-transfer fintech PayTrip suffered a data breach exposing data on 74,877 customers, including names, contact details, IBANs and account balances, later circulated online by a threat actor.
- Victim
- PayTrip
- records
- 74.9K
On 27 December 2025, PayTrip β a French fintech (founded 2019) offering cross-border money transfers, European IBAN accounts and Visa payment cards, aimed largely at people sending money to family abroad β was hit by a data breach affecting 74,877 customers. The disclosure came amid a wave of leaks targeting French companies over the holiday period.
A threat actor operating under the handle "Ced_haurus" obtained the customer records and circulated them online. Reporting attributes the incident to the exploitation of persistent vulnerabilities in exposed information systems, though PayTrip has not published a detailed technical account of the intrusion.
The exposed data is particularly sensitive because it combines identity, contact and banking information. Categories included:
- Last name and first name
- Email address
- Postal address
- Phone number
- IBAN (bank account number)
- Account balance
The combination of IBANs and account balances is especially concerning, as it can facilitate immediate financial fraud, targeted phishing and SEPA direct-debit abuse against affected customers. As of disclosure, the scope had been reported publicly but no detailed remediation or regulatory outcome had been confirmed, so the incident status remains unknown.
Sources
- presse83.frhttps://presse83.fr/2025/12/28/fuites-informatiques-qui-cible-les-entreprises-ce-27-decembre/
- paytrip.frhttps://www.paytrip.fr/en/
- bonjourlafuite.eu.orghttps://bonjourlafuite.eu.org/#PayTrip-2025-12-27