Skip to content
Supply chainContained

Vranken-Pommery: customer data exposed after a cyberattack on the ticketing system

French champagne group Vranken-Pommery disclosed on 10 April 2026 that a ransomware attack on its external online-ticketing provider exposed personal data of visitors to its Reims tourist sites, including names, dates of birth, contact details and reservation records, though banking data was not affected.

Victim
Vranken-Pommery

On 10 April 2026, Vranken-Pommery β€” one of France's largest champagne houses, based in Reims β€” confirmed that it had been indirectly hit by a cyberattack, after a ransomware intrusion compromised the external provider running the online ticketing system for its tourist sites, the Domaine Pommery and the Villa Demoiselle.

The breach did not target Vranken-Pommery's own network. Instead, attackers struck the third-party ticketing platform used to manage visit reservations, exposing personal data of customers who had booked tours. The same provider compromise also affected the neighbouring champagne house Veuve Clicquot, pointing to a shared-supplier (supply-chain) incident across the Champagne sector.

The exposed data covered visitors who had made reservations, and included:

  • First and last names
  • Dates of birth
  • Email addresses and phone numbers
  • Reservation details (visit type, date, amount)
  • Administrative information such as titles

Vranken-Pommery stated that banking and payment data were not affected, as those were handled by a separate provider. The company notified impacted customers by email in both French and English, warning that some exposed data could be used for fraudulent purposes (e.g. phishing). Containment measures reported included isolating the affected systems, hardening access, and rebuilding the environment.

Sources

  1. cyberattaque.orghttps://www.cyberattaque.org/vranken-pommery-les-donnees-clients-exposees-apres-une-cyberattaque-sur-la-billetterie/
  2. france3-regions.franceinfo.frhttps://france3-regions.franceinfo.fr/grand-est/marne/reims/cyberattaque-apres-veuve-clicquot-la-maison-de-champagne-vranken-pommery-rapporte-elle-aussi-que-certaines-donnees-pourraient-etre-utilisees-a-des-fins-frauduleuses-3332945.html

Related incidents

Supply chainContained

Leak at Alan (via Almerys)

On 23 May 2026, French digital health insurer Alan warned members that a cyberattack on its third-party claims processor Almerys had exposed their personal data β€” names, dates of birth, social security numbers and insurance contract details β€” though payment, password and health data were spared.

Victim
Alan