900,000 VeryChic customers affected by a data leak
On 29 January 2026, French luxury travel agency VeryChic, which specialises in private sales of hotel stays and trips, was hit by a confirmed data leak affecting roughly 900,000 customer records.
- Victim
- VeryChic
- records
- 900.0K
On 29 January 2026, VeryChic — a French luxury travel agency specialising in private, members-only sales of hotel stays and holiday packages — was reported to have suffered a data leak affecting approximately 900,000 customer records.
VeryChic operates a flash-sale model in which registered members access discounted bookings at high-end hotels and resorts, so the exposed records correspond to its customer account base. The leak was logged as a confirmed breach of personal data tied to these customer accounts.
Likely exposed data categories include:
- Customer names and contact details (email addresses, phone numbers)
- Account information linked to the VeryChic membership platform
- Booking-related personal data
The precise attack vector and the full breakdown of compromised fields have not been publicly detailed, and the status of the investigation and any regulatory or customer notification remains unclear at the time of reporting. Affected members should remain alert to phishing attempts referencing VeryChic bookings or accounts.
Sources
- fuitesinfos.frhttps://fuitesinfos.fr/article/2026-01-29-verychic