A new cyber attack comes to strike France work. The public organization confirmed that it was targeted by a malicious action which allowed the fraudulent consultation of personal data of 340,000 job seekers. Already the victim of a previous hacking in 2024, France Work sees once again its security questioned.
The alert was given on July 12, 2025 by the CERT-FR, an ANSSI entity responsible for the detection and analysis of cybersecurity incidents. Piracy has targeted Kairos, the training request platform. The origin of the intrusion would come from the compromised account of an Isérois training organization, hacked using a infostealersoftware designed to steal identifiers.
The pirates were thus able to access sensitive data: names, first names, birth dates, France work identifiers, email and postal addresses, telephone numbers. If the banking data would not be affected, France work nevertheless filed a complaint and informed the CNIL of this violation.
This new incident recalls that of 2024 which had already given rise to three indictments. Once again, cybersecurity of public services is questioned, at a time when personal data of millions of French people are centralized on digital platforms.
Cyberattack against France Work: three people arrested