The threat actor Stormous has claimed responsibility for a ransomware attack that resulted in a comprehensive leak of sensitive data, including full email addresses and password hashes, from multiple prominent French government organizations such as Carsat, Finance, Retraite, and IGAS. The incident has impacted France, compromising several key agencies and revealing critical organizational information. #France
Incident Details
- Victim: French Gov
- Country: FR
- Actor: stormous
- Source: http://6sf5xa7eso3e3vk46i5tpcqhnlayczztj7zjktzaztlotyy75zs6j7qd.onion/db-administrative
- Discovered: 2025-05-23 04:25:20.835023
- Published: 2025-05-23 04:24:12.681320
Information
- Leak includes full email addresses and password hashes from multiple French government organizations.
- Organizations affected include Carsat, Finance, Retraite, and IGAS – AAF – AFT – ac-lyoun.fr – cnaf.fr – cnsa.fr.
- The leak was associated with the ransomware actor Stormous.
Disclaimer: This post is based on public claims made by the ransomware group "stormous". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.