The French government's secure messaging platform Tchap suffered a security breach after attackers gained access through a compromised user account. DINUM, France's digital affairs directorate, disclosed the incident and confirmed that hackers successfully infiltrated the encrypted communication system used by government officials.

Tchap was developed as a sovereign messaging solution for French government communications, designed to provide secure channels for official business. The platform serves as France's alternative to commercial messaging services, intended to keep sensitive government communications within national infrastructure and under French control.

The breach occurred through account hijacking, where attackers obtained credentials to a legitimate user account and used those credentials to access the platform. This method bypassed the platform's encryption by entering through an authorized account rather than breaking the encryption itself. The specific technique used to compromise the initial account has not been disclosed.

The incident raises concerns about the security of government communications and the potential exposure of sensitive official discussions. While Tchap employs end-to-end encryption for messages, a compromised account grants access to all conversations that account participates in. The extent of data accessed and the duration of unauthorized access remain under investigation.

Government users should immediately review their account security settings and enable additional authentication measures where available. Organizations using similar platforms should audit account access logs for suspicious activity and reinforce credential security through multi-factor authentication requirements. DINUM continues to investigate the breach and assess its full impact on government communications.

Source: https://www.bleepingcomputer.com/news/security/french-govt-messaging-service-breached-in-account-hijacking-attack/