France Titres, also known as Agence nationale des titres securises, has disclosed a data breach affecting its online portal, following claims by a threat actor that large volumes of citizen data were stolen. The agency, which operates under the French Ministry of the Interior and manages official documents such as passports, national ID cards, and driver’s licenses, said it detected the security incident on April , 2026. An investigation is ongoing, but initial findings indicate that personal data linked to individual and professional accounts on the ants.gouv.fr platform may have been exposed.
According to France Titres, the potentially compromised information includes login IDs, full names, email addresses, dates of birth, and unique account identifiers. In some cases, additional details such as postal addresses, places of birth, and phone numbers may also have been affected. The agency has begun notifying individuals identified as impacted.
Officials emphasized that the exposed data does not provide direct access to user accounts or internal systems. However, they warned that the information could be used in phishing and social engineering campaigns. Users have been advised to remain vigilant and cautious of suspicious emails, messages, or calls that appear to originate from the agency.
France Titres has reported the incident to Commission nationale de l’informatique et des libertes (CNIL), as well as the Paris Public Prosecutor, and is working with Agence nationale de la securite des systemes d’information to investigate and respond to the breach.
Shortly after the disclosure, a threat actor using the alias “breach3d” claimed responsibility on cybercrime forums, alleging that up to 19 million records had been stolen. The individual claimed the dataset includes personal details such as names, contact information, birth data, addresses, and account-related metadata. The data is reportedly being offered for sale, though it has not yet been widely released or verified.
France Titres has not confirmed the scale of the breach or the claims made by the threat actor. The agency reiterated that users are not required to take immediate action but should exercise “extreme caution” regarding any unsolicited communications.The incident highlights ongoing risks facing government digital services, particularly those managing large volumes of sensitive personal data, as cybercriminals continue to target public sector platforms for high-value information.
Recommended Cyber Technology News:
- ATHR Powers Large-Scale AI Vishing and Phishing Attacks
- Fiverr Data Leak Exposes User Files via Google Indexing
- Microsoft Teams Paste Bug Linked to Edge Update
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
🔒 Login or Register to continue reading
