Paris. French authorities have detained a 15-year-old suspect after a major data breach at France Titres, also known as ANTS, the government agency responsible for issuing and managing administrative documents. Investigators allege that the suspect stole a large volume of citizen data and attempted to sell between 1.2 crore and 1.8 crore records on cybercrime platforms.
Suspicious Activity Detected in ANTS Network
According to officials, ANTS first detected suspicious activity in its network on April 13. The agency informed the Paris Prosecutor’s Office on April 16, following which a formal investigation was launched.
FCRF Academy Launches Premier Anti-Money Laundering Certification Program
Investigators found that the attacker had infiltrated the system and exfiltrated personal data. The compromised information reportedly included full names, email addresses, dates of birth, phone numbers and postal addresses.
Agency Confirms Scale of Breach
In an official update, ANTS confirmed that approximately 1.17 crore user accounts were affected by the breach. The agency stated that the stolen data could not directly be used for unauthorised access to accounts.
Despite this, cybersecurity experts have warned that exposure of such personal data could increase the risk of identity theft, targeted phishing attacks and social engineering scams. The volume and sensitivity of the compromised information have raised concerns over the security of government digital infrastructure.
Minor Faces Cybercrime Charges
The French Prosecutor’s Office has confirmed that the detained 15-year-old faces charges including unauthorised access to an automated government data processing system, data theft and possession of tools used for cyber intrusions. The charges carry a maximum penalty of seven years in prison and a fine of up to €300,000, approximately ₹2.7 crore.
The suspect allegedly used the alias “breach3d” on darknet forums and cybercriminal marketplaces. Prosecutors have requested that the minor remain under judicial supervision while proceedings continue.
Investigators are now examining how the large-scale data exfiltration occurred and whether any internal security lapses contributed to the breach. The case has also renewed concern over the growing involvement of minors in sophisticated cybercrime operations.
