France’s National Agency for Secure Documents (ANTS) is investigating a significant cyberattack that potentially exposed the personal data of millions of users registered on its official government portal.

Key Points

• The security breach, detected on April 15, 2026, potentially compromised names, emails, birth details, and phone numbers of personal and professional account holders.
• Government officials confirmed that while account metadata was exposed, uploaded identity documents and direct account access remain secure.
• A threat actor claims to be selling a dataset containing approximately 18 to 19 million records, though this claim is currently unverified.
• The French Interior Ministry has notified the CNIL, national prosecutors, and cybersecurity agencies to conduct a formal investigation into the incident.
• Authorities have implemented enhanced security measures and advised users to remain vigilant against potential phishing attempts or fraudulent communications.

Why it Matters

This breach highlights the persistent vulnerability of centralized government identity systems, which remain high-value targets for cybercriminals seeking data for long-term identity theft. If the stolen dataset is authentic, the exposure of millions of records could facilitate widespread financial fraud and synthetic identity creation across France.