France’s Interior Ministry faced a cyberattack that lasted several days, Interior Minister Laurent Nuñez confirmed. The attackers targeted professional email accounts at the Place Beauvau ministry, which employs nearly 300,000 staff. The breach allowed unauthorized access to sensitive police files, raising immediate concerns about data security. Nuñez spoke publicly on Wednesday, explaining that authorities detected unusual activity and acted quickly to contain the situation. Despite the seriousness of the incident, the minister stressed that public safety was not compromised.
The attack highlights how even large, well-organized institutions can fall victim to cyber intrusions. Hackers were able to navigate through the ministry’s systems by exploiting human error, gaining access to accounts and files that are normally highly protected. Officials continue to investigate how the breach occurred and the potential consequences of the intrusion.
How Hackers Accessed Sensitive Information
Nuñez detailed that the attackers first accessed certain professional email inboxes and recovered login credentials. Using these credentials, they were able to reach multiple sensitive police databases. Among the compromised information were the Criminal Records Processing System (TAJ) and the Wanted Persons File (FPR). While authorities are still determining the full scope of the intrusion, initial findings suggest that a few dozen files may have been removed.
The minister admitted uncertainty about whether the breach could affect ongoing investigations but reassured that it did not threaten citizens’ safety. He confirmed that no ransom demand had been received, indicating that the attack may have been motivated more by data theft than financial gain. The breach underscores the vulnerabilities that can arise from a few individuals failing to follow security protocols, even within a ministry of this size.
Investigations and Official Response
The cyberattack prompted immediate responses from multiple authorities. The ministry reported the incident to France’s National Commission on Informatics and Liberty (CNIL), as legally required, and initiated an internal administrative investigation. Nuñez emphasized that the attack exposed lapses in basic security practices and warned that consistent vigilance is critical in protecting sensitive information.
A group of hackers claimed—without providing evidence—to have accessed data on more than 16 million individuals, but Nuñez rejected the claim as false. France’s Anti-Cybercrime Office (OFAC) now leads the judicial investigation to identify the perpetrators and assess the impact of the intrusion. Officials are moving swiftly to strengthen defenses and prevent similar attacks in the future, highlighting the ongoing challenges of cybersecurity in government institutions.
