By Euronews
Published on
France’s national postal service, La Poste, and its banking arm, La Banque Postale, experienced significant disruptions on Monday due to a suspected cyberattack, impacting package deliveries and online financial services during a critical holiday season. While customer data is believed to be secure, the incident has caused frustration for customers attempting to send or access funds. The attack comes amid a concerning rise in cybersecurity incidents targeting French government and critical infrastructure.
The cyberattack manifested as a distributed denial of service (DDoS) incident, rendering La Poste’s online services temporarily unavailable. This affected the ability to track packages via Colissimo and access certain digital services. La Banque Postale customers found themselves locked out of their mobile applications, hindering their ability to authorize transactions.
Recent Increase in Cybersecurity Threats to France
This latest incident follows closely on the heels of a previously disclosed cyber breach at the French Interior Ministry earlier in December. According to Interior Minister Laurent Nunez, the breach involved the unauthorized extraction of sensitive documents and access to information pertaining to law enforcement and individuals of interest. The Ministry attributed the vulnerability to inadequate security practices, specifically the sharing of passwords in plain text via email.
While authorities downplayed initial reports suggesting the compromise of data on 16.4 million citizens, they confirmed that dozens of files were stolen. French media reports indicate a 22-year-old individual has been detained related to that investigation. This underscores the growing sophistication and frequency of cyber threats facing the nation.
Meanwhile, French counterintelligence agencies are investigating a separate potential cyberattack conspiracy. This centers around software discovered on an international passenger ferry, the GNV Fantastic, which could enable remote control of critical systems. A Latvian crew member is currently in custody in connection with this investigation, suspected of acting on behalf of a foreign power.
The Ferry Incident: A Potential Act of Sabotage
The malware identified on the ferry was a Remote Access Trojan (RAT), capable of taking control of the vessel’s vital operating systems. The General Directorate for Internal Security (DGSI), France’s counterintelligence agency, is leading the investigation, signalling the seriousness of the potential threat. The ferry was temporarily sealed for security checks before resuming operations.
Minister Nunez strongly suggested potential Russian involvement, noting a pattern of interference. However, no official attribution has been made at this time. This investigation adds another layer of complexity to France’s current cybersecurity landscape.
The French government has accused Russia of engaging in “hybrid warfare” tactics against countries supporting Ukraine. These tactics encompass not only cyberattacks, but also sabotage, disinformation campaigns and potential assassination attempts.
La Poste has been a target for cyberattacks in the past, with the Turkish hacking group Turk Hack Team claiming responsibility for a DDoS attack in February 2024 that disrupted the postal service’s website. The services affected on Monday – Colissimo tracking and the Digiposte digital vault – were also impacted during that previous incident, raising questions about the effectiveness of La Poste’s security measures.
The current disruptions at La Poste and La Banque Postale are temporary, with teams actively working to restore full functionality. However, this series of incidents highlights the persistent and evolving nature of cybersecurity risks and the critical need for enhanced digital defenses across all sectors. Authorities are urging vigilance and adherence to best practices in digital security as they continue to investigate these attacks.
Consumers and businesses should remain alert for phishing attempts and other malicious activity. Further updates on the investigations and restoration of services are expected in the coming days.
Additional sources • AP
