France’s Interior Ministry suffered a prolonged cyberattack that lasted several days, Interior Minister Laurent Nuñez confirmed. The attackers focused on email accounts at the Place Beauvau ministry, which employs nearly 300,000 people. The intrusion allowed hackers to access sensitive internal files, including police databases, and authorities only became aware of the breach after detecting unusual activity in the ministry’s systems. Nuñez spoke publicly about the incident to assure citizens that officials were responding swiftly.
According to Nuñez, the breach raised immediate concerns about the integrity of the ministry’s internal communications and sensitive information. While investigators are still working to fully understand the scope, the attack demonstrates the growing vulnerability of large public institutions to targeted cyber threats.
How Hackers Accessed Sensitive Information
The attackers gained entry by targeting professional email inboxes and recovering login credentials. Once inside, they accessed critical databases, including the Criminal Records Processing System (TAJ) and the Wanted Persons File (FPR). Officials do not yet know the full extent of the files that were accessed or removed, but early estimates suggest only a few dozen documents may have been taken.
Nuñez stressed that the intrusion, while serious, does not appear to threaten ongoing investigations or the safety of French citizens. No ransom demand followed the attack, and authorities have launched a judicial investigation to quickly identify those responsible. The breach highlights how even small lapses in security practices can give hackers access to highly sensitive information.
Responses, Accountability, and Ongoing Investigations
The interior minister attributed the incident to human error, noting that despite repeated security reminders, some staff failed to follow basic procedures. He explained that a few careless actions can compromise even the most secure systems.
The attack came to light after BFMTV reported unusual activity on ministry email servers. Following that report, a hacker group claimed to have accessed information on more than 16 million individuals—claims Nuñez rejected as false. The ministry reported the matter to the CNIL, France’s data protection authority, and Nuñez ordered an internal administrative investigation.
France’s Anti-Cybercrime Office (OFAC) now leads the probe, working alongside judicial authorities to uncover the perpetrators and assess the full impact of the breach. Meanwhile, the ministry continues to reinforce internal cybersecurity measures to prevent future attacks.
