France’s Interior Ministry suffered a significant cyberattack that lasted several days, Interior Minister Laurent Nuñez confirmed. The attackers targeted email accounts at the Place Beauvau ministry, which employs nearly 300,000 people. Nuñez revealed the breach after ministry officials noticed unusual activity on their email servers. The intrusion allowed hackers to access sensitive information, including internal police files, raising concerns about the scope and potential impact of the attack. While authorities acted quickly, the incident has highlighted vulnerabilities in cybersecurity practices within the ministry.
According to Nuñez, the attack did not compromise public safety. “We cannot yet know the full extent of what has been taken,” he said, but stressed that lives were not at risk. No ransom demands have been reported, and law enforcement and cybersecurity teams continue to investigate the breach.
How Hackers Gained Access
The attackers gained access by breaking into several professional email inboxes and retrieving login credentials. Once inside, they could view important files, including the Criminal Records Processing System (TAJ) and the Wanted Persons File (FPR). While a few dozen files may have been removed, officials have not yet determined the full scale of the intrusion.
Nuñez emphasized that human error played a role. Despite regular reminders about digital security protocols, a small number of individuals failing to follow procedures created an opportunity for the hackers. The minister warned that even minor lapses can compromise large institutions, particularly those handling sensitive information like police databases.
Responses and Ongoing Investigations
The breach came to light after BFMTV reported suspicious activity targeting ministry email servers. Soon after, a group of hackers claimed, without evidence, to have accessed data related to more than 16 million people. Nuñez rejected the claim as false and confirmed the ministry had notified the CNIL, France’s data protection authority, as required by law. He also requested an internal administrative investigation.
France’s Anti-Cybercrime Office (OFAC) now leads the official inquiry. Judicial authorities are working alongside cybersecurity experts to identify the perpetrators and determine the full impact of the attack. Nuñez stressed the ministry’s commitment to improving security measures and preventing future breaches while keeping investigations ongoing.
