A large compiled dataset focused on French residents was discovered in September 2024, sitting in a publicly accessible database with no authentication required. The corpus reportedly contained over 90 million rows in total, with 28.4 million unique email addresses among them.\n\nThe data had been aggregated from multiple prior breaches, with each contributing different fields. The combined record set covered names, physical and IP addresses, phone numbers, device information, and partial credit card details including payment type and last four digits. Because the original sources were not consistently identified, affected individuals have no clear path to trace which underlying incident exposed them.\n\nThe exposure carries severe risk for population-scale identity and financial fraud. The combination of physical address, phone number, and partial card data is a strong base for targeted phishing, mail-based fraud, and impersonation. Anyone whose information may have been included should monitor financial accounts, treat unsolicited contact from "banks" or government services with caution, and update credentials reused across services.

Multi-source citizen data corpora aggregate identity, contact, address, government-linked, and public-record-style data drawn from multiple unidentified sources into one large population dataset.

The corpus came to public attention in September 2024 after roughly 90 million rows were found left exposed in a publicly facing database. The compilation contained 28.4 million unique email addresses drawn from a mix of underlying breaches. No single source has been definitively attributed, and the original breached entities remain partly unidentified. Compilations of this kind tend to recirculate on data-broker forums and aggregator sites for years after first surfacing. France-focused datasets remain a recurring concern for regulators and identity-protection services.