Skip to content
Data breachContained

Data leak at Top Achat

On 12 December 2024, French PC-hardware e-tailer Top Achat (LDLC group) disclosed a breach exposing customer names, email and postal addresses; no passwords or payment data were affected. The intrusion was linked to an earlier compromise at parent company LDLC.

Victim
Top Achat

On 12 December 2024, Top Achat — a French online retailer of computer hardware and components, part of the LDLC group — confirmed it had suffered a cyberattack that exposed some of its customers' personal data.

The intrusion was tied to an earlier compromise at parent company LDLC, which had reported its own security incident a few days before; attackers appear to have leveraged that access to reach Top Achat customer data. Top Achat stressed that no passwords or banking/payment details were affected.

The exposed data was limited to contact identity information:

  • First and last names
  • Email addresses
  • Postal addresses

Top Achat said it had contained the incident and reinforced its information systems to secure remaining data. The company notified affected customers by email and urged them to stay vigilant against phishing attempts that could exploit the leaked details. No official count of affected customers was published.

Sources

  1. draknet.frhttps://draknet.fr/fuite-donnees-apres-ldlc-top-achat-subit-cyberattaque-html/
  2. funinformatique.comhttps://www.funinformatique.com/fuite_de_donnees/top-achat/

Related incidents

Data breachUnknown

Leak at Electro Dépôt

Customer data attributed to French electronics retailer Electro Dépôt surfaced as one of at least 17 French breaches consolidated on an open database, exposing names, contact details, IP addresses and partial payment data.

Victim
Electro Dépôt
Data breachUnknown

Leak at Go Sport

In December 2024, French sporting-goods retailer Go Sport was named in dark-web claims of a customer data leak; the alleged fresh breach was debunked, with the data tracing back to a 'go-sport.com' file in an earlier compilation of past French breaches.

Victim
Go Sport
Data breachResolved

Data leak at Sport 2000

Customer database of French sporting-goods retailer Sport 2000 — covering roughly 4.3 million people — was stolen and circulated on hacking forums and the dark web, exposing names, contact details, dates of birth and purchase history.

Victim
Sport 2000
Records
4.4M
Data breachOngoing

Leak at LDLC

On 10 December 2024, French high-tech e-commerce retailer LDLC disclosed a data breach exposing personal data (names, email addresses, phone numbers) of both its online and in-store customers — potentially several million people — though it stated no financial or sensitive data was affected.

Victim
LDLC