France Titres, the government agency responsible for managing and issuing identity documents, confirmed that it experienced a data breach. The breach was associated with a hacker using the alias 'breach3d', who announced on a dark web forum that they are selling approximately 19 million records that may include sensitive personal information.

The agency’s initial detection of the breach occurred on April 15, leading to an ongoing investigation into the incident. According to the announcement from ANTS, the compromised data types include:

Full names Email addresses Dates of birth Postal addresses Unique account identifiers Phone numbers

While the agency has assured that there is no unauthorized access to its systems, the information can still be exploited for phishing and social engineering attacks. ANTS has begun notifying potentially affected individuals, advising them to stay vigilant against suspicious communications.

The hacker claimed that the breach is a significant security failure on the part of the French government, mocking their digital defenses by stating, "They are as crumbly as their croissants." The data has not yet been broadly leaked, but it has been put on sale for an undisclosed amount.

ANTS has reported the incident to France's data protection authority (CNIL) and involved the national cybersecurity agency (ANSSI) in the response process. The government agency has warned that selling or distributing this data is illegal and has initiated a formal investigation to address the breach.

Overall, this incident raises serious concerns about the integrity of government cybersecurity protocols and the potential risks for millions of affected individuals.