CNDAFC A.I CyberSecurity Scoring
CNDAFC
Company Information
Website:https://caf.fr/professionnels/nous-connaitre/presentation
Employees number:4,199
Number of followers:123,010
NAICS:92
Industry Type:Government Administration
Homepage:caf.fr
CNDAFC Risk Score (AI oriented)
Between 700 and 749
CNDAFCGovernment Administration
Updated:
01/04/2026
01/04/2026
743/1000
Moderate
Ba
CNDAFC Global Score (TPRM)
xxxx
CNDAFCGovernment Administration
Score locked

CNDAFCModerate
Current Score
743Ba (MODERATE)
01000
1 incidents
-35 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
745
JUNE 2026
745
MAY 2026
743
APRIL 2026
743
MARCH 2026
743
FEBRUARY 2026
741
JANUARY 2026
741
DECEMBER 2025
775
Cyber Attack
17 Dec 2025 • CNDAFC
Ministère de l'Intérieur and Caisse d'Allocations Familiales: Le pirate du ministère de l'Intérieur revendique un hack de la CAF: la Caisse nationale nie toute attaque et "confirme la sécurité de son système d'information"
Alleged Cyberattack on Caisse d'Allocations Familiales (CAF) by Hacker Indra
740
CRITICAL-35
MINCAF1766073386
Cyberattack Claim Targets French Family Benefits Agency (CAF) Amid Hacker’s Escalating Threats
A hacker known as Indra, who previously claimed responsibility for a cyberattack on France’s Interior Ministry, has now alleged a breach of the Caisse d’Allocations Familiales (CAF), the national family benefits agency. In a post on the cybercriminal forum Breachforums late yesterday, the hacker asserted access to 15 GB of data—reportedly containing 22 million lines of personal information on nearly 4 million beneficiaries. The leaked files, reviewed by BFMTV, include names, birthdates, email addresses, and phone numbers of individuals registered with the CAF between September 2022 and November 2025. Indra framed the attack as a "Christmas gift to France."
The CAF swiftly denied the claims, stating that no intrusion or vulnerability had been detected in its systems. In an official response, the agency insisted its infrastructure remains secure and that the exposed data did not originate from its own databases. Instead, the CAF suggested the information may have been sourced from other public services with which it exchanges data, though it confirmed no technical breach of its information flows. Notably, the agency emphasized that no banking details or passwords were included in the leaked files.
The same Indra account had earlier claimed responsibility for compromising the Interior Ministry’s systems, including sensitive police databases like the Traitement des Antécédents Judiciaires (TAJ) and the Fichier des Personnes Recherchées (FPR). That attack was reportedly executed by hijacking personal email accounts of ministry employees. Authorities arrested a 22-year-old suspect in connection with the Interior Ministry breach just hours before the CAF-related post appeared, though the origin of the CAF data remains unconfirmed.
While the CAF maintains its systems were not breached, the authenticity of the leaked data raises questions about the broader security of interconnected public-sector networks. Investigations into both incidents are ongoing.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
NOVEMBER 2025
775
OCTOBER 2025
775
SEPTEMBER 2025
775
AUGUST 2025
775
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for CNDAFC ??
What was CNDAFC's A.I Rankiteo Cyber Score in June 2026 ??
What was CNDAFC's A.I Rankiteo Cyber Score in May 2026 ??
What was CNDAFC's A.I Rankiteo Cyber Score in April 2026 ??
What was CNDAFC's A.I Rankiteo Cyber Score in March 2026 ??
What was CNDAFC's A.I Rankiteo Cyber Score in February 2026 ??
What was CNDAFC's A.I Rankiteo Cyber Score in January 2026 ??
What was CNDAFC's A.I Rankiteo Cyber Score in December 2025 ??
What was CNDAFC's A.I Rankiteo Cyber Score in November 2025 ??
What was CNDAFC's A.I Rankiteo Cyber Score in October 2025 ??
What was CNDAFC's A.I Rankiteo Cyber Score in September 2025 ??
What was CNDAFC's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on CNDAFC's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with CNDAFC ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view CNDAFC's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?