- The violation of transmission in France could affect thousands
- No threat player has assumed responsibility, and the data has not yet been mistreated
- This is not the first time that France work has been affected
The French National Employment Agency has undergone a cyber attack in which threat actors would have accessed sensitive data on “hundreds of thousands” of people.
In a letter of data violation notification, sent to people affected and seen by the French local media, France Work declared that the criminals had accessed data via Kairos, a digital platform mainly used by training organizations and employment advisers to manage vocational training activities, in particular the registration of follow-up courses, validation of financing requests and monitoring of the progress of job seekers.
The initial reports place the number of people assigned to around 340,000, with the data exposed including comprehensive names, postal addresses, email addresses, telephone numbers and identification numbers of France.
Suspects arrested
Although there is no evidence of abuse in nature, this type of data is precious for criminals who seek to make an identity theft or other activities.
Knowing the identities and contact details of people who were looking for work, threat actors can create convincing emails, inviting people with false job interviews. Thanks to these interviews, they can deploy all kinds of malicious software, even ransomware.
The Lazarus group, for example, is famous for its Dreamjob Operation campaign, in which it invites its objectives to false job interviews.
The good news is that financial information, such as banking data or information on credit cards, has not been disclosed. However, France Work has urged all users to remain vigilant and to pay particular attention to unlined emails.
According to CybernessIt is not the first time that France work has undergone a cyber attack, because an incident of March 2024 was much more important, affecting 43 million individuals – more than two -thirds of the total population of the country, which makes it the largest cyberattack in French history.
The next day, three suspects aged 21 to 23 were arrested as part of the attack. All three were based in France and allegedly unclean of CAP Emploi advisers to access. No group of known ransomware has claimed responsibility and the attack was officially attributed to any group of organized cybercrimines.
