Overview
- Officials say specialized teams have contained the incident and are verifying the scope of the exfiltrated information.
- The dataset concerns Pass'Sport beneficiaries and includes identity details such as names and email addresses, not passwords or banking information.
- The ministry will notify affected households with security guidance, file a criminal complaint, and inform the CNIL within 72 hours.
- Reporting notes the trove appears linked to CAF records published online, heightening risks of fraud and identity theft for citizens.
- The breach follows a separate Interior Ministry intrusion via email servers that allowed consultation of limited police files, with an Ofac investigation ongoing.