X’s Paris Office Raided Amid Cybercrime Investigation
French authorities raided the Paris office of X, formerly known as Twitter, in February 2026, as part of a cybercrime investigation that began in January 2025. The investigation centers on X’s AI assistant, Grok, and its potential role in disseminating illegal content, including Holocaust denial, sexually explicit deepfakes (some involving minors), and child sexual abuse material (CSAM).
Details of the Investigation
The operation was overseen by the cybercrime section of the Paris prosecutor’s office, in coordination with the Gendarmerie’s national cyber unit (UNCyber) and Europol [CyberInsider]. Prosecutors have initiated a probe into multiple offenses, including complicity in the possession and distribution of CSAM, the distribution of sexualized deepfakes, Holocaust denial (which is a criminal offense in France), fraudulent extraction and manipulation of data systems, and operating an illicit online platform as part of an organized group [CyberInsider].
Executives Summoned for Questioning
Elon Musk and CEO Linda Yaccarino have been summoned for voluntary questioning in Paris on April 20, 2026, regarding the allegations [CyberInsider]. X employees based in France will also be questioned as witnesses during the same week.
Hacker Claims Responsibility
A group of hackers calling themselves DumpSec claimed responsibility for the data theft, stating that a former member subsequently attempted to resell the information [YouTube]. The hacking incident, which occurred in late 2025, involved 19 million computer lines of data, including duplicates, spanning three to fifteen years of history depending on the software installation date in doctors’ offices [YouTube].
Data Breach Details
While authorities state that no health documents, prescriptions, or biological examination results were released, concerns remain regarding the extent of administrative data stolen [YouTube]. Reports indicate the leak contains “very precise” data on patients, including sensitive information about their sexual orientation and health status, as well as data pertaining to prominent political leaders [DemocracyNow].
Company Response
The French Ministry of Health has ordered Cegedim Santé, a major medical data management company, to implement corrective measures following the cyberattack. Cegedim Santé admitted to being targeted in late 2025, affecting 1,500 practitioners out of the 3,800 doctors using its MLM software [YouTube].
Ongoing Scrutiny
French authorities characterize the current phase of the investigation as “constructive,” but emphasize the need for X to comply with national laws given its presence and user base in France [CyberInsider]. The National Commission for Information Technology and Liberties (Cnil) is analyzing the revelations and will conduct further checks if necessary.