ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

Free Data Breach

free.fr
Major exposure
Verified breach
Accounts exposed 13,926,173
Breach date 17 Oct 2024
Added to tracker 27 May 2025
Data classes 6

What happened

In October 2024, French ISP "Free" suffered a data breach which was subsequently posted for sale and later, leaked publicly. The data included 14M unique email addresses along with names, physical addresses, phone numbers, genders, dates of birth and for many records, IBAN bank account numbers. Free advised that the numbers were "not enough to make a direct debit from a bank".

Exposed data

Bank account numbers Dates of birth Genders Names Phone numbers Physical addresses

Recommended actions

  • Monitor your bank and card statements closely and consider requesting a card replacement.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP