A hacker claims to have breached the data of France’s key healthcare payment operator, with millions of Social Security records on sale.
A massive dataset allegedly tied to French healthcare payment operator Almerys has surfaced on underground forums.
In a post on a well-known cybercrime marketplace, threat actors are claiming the exposure of more than 44 million records and over 15 million unique Social Security numbers belonging to French citizens.
Almerys, founded in 2000 and headquartered in Clermont-Ferrand with offices in Paris, is one of the key health payment operators in France.
Almerys processes health payment data for a significant portion of the French population, serving 20 million insured individuals through a network of 84 healthcare organizations.
What data is allegedly on sale?
Cybernews researchers reviewed the post and data sample provided by the threat actors. The sample records contained personally identifiable information such as:
- Full names
- Dates of birth
- Partial Social Security numbers
- Employer or organization details
From the data provided to date, it is impossible to independently verify the scale of the dataset on sale or whether it contains 44 million records as claimed.
Researchers noted that the social security numbers are shown partially – the records show only the 13-digit base without the remaining two-digit key.
This raises questions about whether the sample was intentionally redacted, potentially to preserve data value for sale or reduce immediate identifiability.
“It could be that the threat actor redacted this sample a bit, so that the data is more usable only when it is bought,” our researchers said.
At this stage, the authenticity of the broader dataset remains unconfirmed. The company has been contacted for comment, but a response is yet to be received.
“The affected individuals are at risk for identity theft if there's more leaked data that builds a full picture of a person. Also, there's a risk of recon of the workplaces,” the researchers warned.
French institutions are under pressure
If verified, this would mark a second major security incident involving Almerys in recent years.
In 2024, Almerys and Viamedis were both affected by a cyberattack that exposed sensitive insurance and personal data for more than 33 million people, including marital status, dates of birth, Social Security numbers, and insurance coverage details, according to France’s CNIL.
The Almarys breach claims come after the French government has confirmed that its platform, the National Agency for Secure Titles (ANTS), now called France Titers, was breached.
The database used to secure identity documents was compromised, exposing around 19 million records containing passport, national ID card, and driver’s license data.
Unlock more exclusive Cybernews content on YouTube.
Your email address will not be published. Required fields are markedmarked