Skip to content
Data breachOngoing

Service Civique: contacts from public and association organisations published after a cyberattack

France's Agence du Service Civique disclosed a personal-data breach affecting its volunteer-host training platform, after a database of contacts at accredited organisations — names, emails, postal addresses, phone numbers and accreditation numbers — was published on a cybercrime forum.

Victim
Service Civique

On 2 May 2026, Service Civique — France's public agency running the national civic-service programme (service-civique.gouv.fr) — was reported to have suffered a personal-data breach, after a database attributed to the platform was published on a cybercrime forum by a threat actor using the handle 0xBAADF00D. The Agence du Service Civique said it detected the incident on 6 May 2026 and that it affected the online training platform used by the organisations hosting Service Civique volunteers.

The compromised platform was operated under contract by the agency's service providers, and the exposed data centred on the contacts and referents at accredited host structures rather than on complete volunteer files. According to the agency's notification and French reporting, the unauthorised access covered:

  • Civil-identity data (title, first name, last name)
  • Email addresses
  • Full postal addresses (for some accounts)
  • Phone numbers (for some accounts)
  • Host-organisation details, including business/structure names and accreditation numbers

The exact number of affected records has not been publicly detailed. Security commentators warned that the leaked contact data could be used to mount highly credible phishing campaigns against the affected public bodies and associations.

The Agence du Service Civique confirmed the incident, launched technical investigations as soon as it was discovered, notified the individuals potentially affected, reported the breach to France's data-protection authority (CNIL) under the GDPR, and filed a criminal complaint. The investigation remains ongoing.

Sources

  1. cyberattaque.orghttps://www.cyberattaque.org/service-civique-des-contacts-dorganismes-publics-et-associatifs-publies-apres-une-cyberattaque/
  2. fuitesinfos.frhttps://fuitesinfos.fr/article/2026-05-21-agence-du-service-civique
  3. usine-digitale.frhttps://www.usine-digitale.fr/cybersecurite/cyberattaque-quelques-semaines-apres-lants-lagence-du-service-civique-victime-dune-violation-de-donnees-personnelles-sur-sa-plateforme-de-formation.JPMERC2JF5H53IZFUB52ZN2A7M.html
  4. frenchbreaches.comhttps://frenchbreaches.com/alertes/service-civique-mpfaoqh7lc9z6kizae

Related incidents