EvilDump

EvilDump is a threat actor identified in the provided content as the primary poster behind an alleged breach of ANTS (now branded France Titres), a French government agency responsible for secure identity documents and legal titles, including passports, national identity cards, driver's licenses, and vehicle registration certificates. The content states that EvilDump credited ExtaseHunters and Breach3d as collaborators. The actors allegedly claimed to possess and offer for sale a database containing 18 million records from ANTS, with pricing available via direct message and escrow or middleman services accepted, and the listing reportedly posted on the open web. According to the content, the alleged dataset included highly sensitive citizen identity information such as full legal names, usage or maiden names, email addresses, verified mobile numbers, dates and places of birth, physical addresses, internal identifiers, certification status, professional status, and gender or civil title fields. The sample data reportedly showed sequential internal IDs, which the content characterized as indicative of structured database extraction rather than scraping. The incident was categorized as a critical government-sector data breach. The content maps the alleged intrusion and follow-on activity to MITRE ATT&CK techniques T1190 (Exploit Public-Facing Application), T1213 (Data from Information Repositories), T1567 (Exfiltration Over Web Service), T1078 (Valid Accounts), and T1657 (Financial Theft).