French authorities have detained a 15-year-old suspected of promoting knowledge stolen in a cyberattack on France Titres (ANTS), the nation’s company for issuing and managing administrative paperwork.
The federal government company confirmed the breach and the authenticity of the information supplied on the market on a cybercriminal discussion board by somebody utilizing the alias ‘breach3d’.
On April 13, ANTS detected suspicious exercise on its community and notified authorities a couple of days later, on April 16, the Paris Prosecutor’s Workplace mentioned.
Following an investigation, the authorities imagine that the suspected 15-year-old used the moniker ‘breach3d’ to supply on the market between 12 and 18 million data stolen within the ANTS data breach.
The minor faces fees for unauthorized entry, persistence, and knowledge exfiltration from a state-run automated private knowledge processing system, in addition to for possession of software program that allows the offenses.
The offenses carry a most sentence of seven years in jail and a nice of EUR 300,000, the Paris Prosecutor’s Workplace notes in a press launch.
A decide is now overseeing the case. Based mostly on the proof discovered, prosecutors are searching for formal fees and have requested that the minor be positioned underneath judicial supervision.
Private info uncovered
On April 20, ANTS disclosed {that a} risk actor breached its methods and accessed knowledge from particular person {and professional} accounts on the ants.gouv.fr portal.
The federal government company decided that among the many affected knowledge sorts had been full names, e-mail addresses, dates of start, postal addresses, and cellphone numbers.
The announcement got here after a risk actor claimed to have compromised ANTS and supplied to promote as much as 19 million data allegedly stolen within the assault.
.jpg)
In an replace on the incident, the company mentioned that the variety of impacted accounts was 11.7 million, however the stolen knowledge couldn’t be used for unauthorized entry.
Pending the investigating decide’s determination, the 15-year-old minor has not been formally charged.
AI chained 4 zero-days into one exploit that bypassed each renderer and OS sandboxes. A wave of latest exploits is coming.
On the Autonomous Validation Summit (Might 12 & 14), see how autonomous, context-rich validation finds what’s exploitable, proves controls maintain, and closes the remediation loop.
Declare Your Spot
