CNIL Fines France Travail €5 Million in 2024 for Inadequate Security Measures Following Cyberattack

In 2024, the CNIL (France's data protection authority) imposed a €5 million fine on France Travail for insufficient security measures following a cyberattack that occurred in early 2024. The incident led to a leak of personal data. No additional technical details (such as the type of attack, exposed data, or exploited vulnerabilities) were provided. The penalty specifically targets the lack of adequate defensive protections.