Skip to content
Data breachContained

Leak at France Travail

On 1 December 2025, France Travail and the Missions Locales network disclosed that an attacker who hijacked a local-mission agent's account accessed records of about 1.6 million young people, exposing names, dates of birth, social security numbers and contact details.

Victim
France Travail
records
1.6M

On 1 December 2025, France Travail β€” France's public employment agency β€” and the Union nationale des missions locales jointly disclosed a cyberattack that exposed the personal data of roughly 1.6 million young people supported by the Missions Locales network for youth employment.

According to initial investigations, attackers compromised the account of an agent responsible for account management (RGC) at a local mission. Using the rights of that hijacked account, they created two additional accounts through the ProConnect identity service, then used those to reach professional tools holding the case files of accompanied young people. The data of the affected individuals was deemed "susceptible to being disclosed."

The exposed data categories include:

  • First and last name
  • Date of birth
  • Social security number
  • France Travail identifier
  • Email and postal addresses
  • Telephone numbers

No passwords or banking information were extracted, according to the two organisations. This marks the fourth cyber incident affecting France Travail in two years. In response, the access was cut and reinforced security measures were deployed, including mandatory security-awareness training renewed every six months for staff of partner organisations as a condition of access to the information system. Both networks urged affected individuals to remain vigilant against phishing and identity-fraud attempts.

Sources

  1. francetravail.orghttps://www.francetravail.org/accueil/communiques/2025/le-reseau-des-missions-locales-et-france-travail-appellent-a-la-vigilance-apres-un-acte-de-cyber-malveillance.html?type=article
  2. usine-digitale.frhttps://www.usine-digitale.fr/cybersecurite/cyberattaque-france-travail-de-nouveau-pirate-les-donnees-de-16-million-de-jeunes-potentiellement-exposees.ZG4Q4PNAXRGX5FWOUW4YBDJG2Y.html
  3. journaldugeek.comhttps://www.journaldugeek.com/2025/12/02/cyberattaque-chez-france-travail-16-million-de-jeunes-exposes-a-un-risque-de-fuite-de-donnees/
  4. banquedesterritoires.frhttps://www.banquedesterritoires.fr/cybermalveillance-france-travail-et-lunion-nationale-des-missions-locales-annoncent-que-les-donnees

Related incidents

Data breachContained

Leak at France Travail

On 6 October 2025, France Travail β€” France's national public employment agency β€” was hit by one of several 2025 data leaks, with personal records of roughly 5,500 job seekers exposed, including names, France Travail IDs, registration categories, email addresses, RSA welfare status and CIR identifiers.

Victim
France Travail
Data breachUnknown

Leak at France Travail

On 25 September 2025, a leak attributed to France Travail, France's public employment agency, exposed the personal data of about 9,971 job seekers, including their email addresses, names and the email address of their assigned advisor.

Victim
France Travail
Records
10.0K
Data breachContained

Leak at France Travail

On 12 August 2025, France Travail, France's public employment agency, disclosed unauthorized access to its employer-facing job portal that exposed the contact details of business users β€” names, email addresses, phone numbers and an internal technical identifier.

Victim
France Travail
Credential stuffingOngoing

Leak at France Travail

In late October 2025, France Travail β€” France's public employment agency β€” disclosed a breach in which attackers used credentials harvested by infostealer malware to access job-seeker accounts and exfiltrate sensitive personal, identity and financial data; about 16,479 affected records were catalogued.

Victim
France Travail