- France travail could affect thousands
- No threat actor assumed responsibility, and the data has not yet been abused
- This is not the first time that France Travail has been beaten
The National Employment Agency of France has suffered a cyber attack in which threat actors allegedly accessed confidential data on “hundreds of thousands” of people.
In a data violation notification letter, sent to the affected people and seen by the French local media, France Travail said that criminals accessed the data through Kairos, a digital platform used mainly by training organizations and employment advisors to administer professional training activities, including the registration of monitoring courses, the validation of financing requests and the progress of employment search engines.
The initial reports place the number of people affected by approximately 340,000, with the exposed data that include complete names, postal addresses, email addresses, telephone numbers and Vía ID numbers of France.
Arrested suspects
While there is no evidence of abuse in nature, this type of data is valuable for criminals who seek to lead to identity theft or other activities.
Knowing the identities and contact information of the people looking for work, threat actors can create convincing emails, inviting people to falsify work interviews. Through these interviews, they can implement all types of malware, or even ransomware.
The Lazarus group, for example, is famous for its Operation Dreamjob campaign, in which it invites its objectives to falsify work interviews.
The good news is that financial information, such as bank data or credit card information, did not leaked. Even so, France Travail urged all users to remain attentive and pay special attention to the unre requested emails.
According CybernewsThis is not the first time that France Travail suffered a cyber attack, since a March 2024 incident was significantly higher in reach, affecting 43 million people, more than two thirds of the entire population of the country, which made it the largest cyber attack in French history.
Following, three suspects from 21 to 23 years were arrested in relation to the attack. The three had their headquarters in France and supposedly Cap soak advisors for access. No known ransomware group has assumed responsibility, and the attack has not been formally attributed to any organized cybercriminal group.
