News Flash

France travail hacked: 31,000 employees exposed in major cyberattack

Travail Encore claims responsibility for a 30 GB data breach affecting thousands of job seekers and employees

21 November 2025

Table of contents

  • A new cyberstorm hits France
  • Stolen data and digital identity risks
  • A repeated breach
  • France’s response and containment efforts
  • A warning to Europe

A new cyberstorm hits France

On October 27, the French employment agency France Travail (formerly Pôle Emploi) fell victim to a massive cyberattack that compromised the data of over 31,000 employees and job seekers. The hacker group Travail Encore claimed responsibility, boasting about stealing 30 gigabytes of personal data from the agency’s systems.

Stolen data and digital identity risks

According to preliminary investigations, the attackers accessed sensitive personal information such as names, birth dates, addresses, phone numbers, emails, and professional histories.

Cyber security experts warn that the stolen data could be exploited to forge digital identities and fake social security certificates, enabling large-scale identity theft and digital fraud across Europe.

A repeated breach

This is not the first time France Travail has been targeted. In February 2024, the agency suffered an even larger data leak, with over 43 million profiles compromised.

The recurrence highlights a growing vulnerability within public agencies, which are becoming prime targets for cybercriminals seeking massive volumes of personal information.

France’s response and containment efforts

According to the broadcaster RTL, France Travail is reportedly considering direct communication with the hackers to prevent further damage and avoid the public release of the stolen data.

While controversial, such negotiation attempts often arise from the urgent need to limit the spread of confidential information. Meanwhile, France’s CNIL (National Commission on Informatics and Liberty) has launched an official investigation into the breach.

A warning to Europe

This attack serves as a stark reminder of the growing cyber risks facing public institutions across Europe. As the EU’s NIS2 and CER Directives come into force, the need for stronger cyber resilience and proactive data protection policies is more urgent than ever.

The France Travail case shows how identity management and public trust have become critical pillars of national security in the digital era.

2
To top