France’s Interior Ministry suffered a cyberattack that lasted several days, Interior Minister Laurent Nuñez revealed. The attackers targeted professional email accounts at the Place Beauvau ministry, which employs nearly 300,000 people. Ministry officials discovered unusual activity last week, prompting immediate investigation and security measures. Nuñez confirmed the breach publicly on Wednesday, acknowledging that the attack allowed unauthorized access to sensitive police files while emphasizing that authorities responded quickly to contain the situation.
How the Attack Unfolded
The hackers gained entry by accessing a number of professional email inboxes and recovering the associated login credentials. Once inside, they were able to consult critical police databases, including the Criminal Records Processing System (TAJ) and the Wanted Persons File (FPR). Nuñez said officials still cannot determine the full scope of the intrusion, but early assessments suggest that a few dozen files may have been removed. While the breach raises concerns, the minister stressed that the incident did not endanger public safety and that no ransom demands had been issued.
Responsibility, Response, and Ongoing Investigation
Nuñez attributed the intrusion largely to lapses in security practices, noting that even a few individuals ignoring established procedures can create significant vulnerabilities. After BFMTV reported the suspicious activity, a hacker group claimed—without providing evidence—that it had accessed data on over 16 million people. Nuñez called this claim false and emphasized that the ministry followed legal obligations by notifying the CNIL, France’s data protection authority, and launching an internal administrative review.
France’s Anti-Cybercrime Office (OFAC) now leads the ongoing investigation, while judicial authorities work to identify the perpetrators as quickly as possible. Nuñez said the judicial process aims to hold those responsible accountable and strengthen the ministry’s cybersecurity to prevent similar attacks in the future.
