What Happened
In September 2024, French electronics retailer Boulanger Electroménager & Multimédia suffered a ransomware attack claimed by threat actor “horrormar44,” which exposed customer data from a delivery subcontractor database, including over 27 million records (with around 1-2 million unique entries after deduplication) containing full names, home addresses, email addresses, phone numbers, geographic coordinates, and order notes, but no passwords or banking details. Boulanger confirmed the breach on September 8, 2024, stating it was contained, affected customers were notified, and no financial data was compromised, while also impacting retailers like Truffaut and Cultura. The stolen dataset, initially offered for €2,000 on a now-defunct forum, resurfaced for free in early 2025 on a clear web hacking forum in raw (16GB JSON) and cleaned (500MB CSV) formats, verified as authentic by researchers and posing risks for phishing, scams, and social engineering.
