Skip to content
Support
Sign In Subscribe
Leaks

Nearly 27,000 Records Allegedly Leaked From French Job Platform Local'Emploi

 and  Dark Web Informer
10 min read
Breach Report France flagFrance Employment

Nearly 27,000 Records Allegedly Leaked From French Job Platform Local'Emploi

A threat actor using the alias 0xSec has posted what they describe as the full database of Local'Emploi (localemploi.fr), a French public employment platform that aggregates local job offers, internships, permanent contracts, and training in the Paris-Saclay area. The leak is presented as 4 CSV files totalling roughly 26,900 records: users.csv (11,272 rows), users_with_resume.csv (12,032 rows), offers.csv (3,487 rows), and companies.csv (143 rows). Claimed fields include candidate names, emails, phone numbers, dates of birth, postal codes and cities, account/verification flags, job offers, company contacts with SIRET numbers, and résumé references. Unlike a public scrape, the actor frames this as a database leak. The dataset's scope is unverified.

Data~26.9K records
PriceFree leak
CountryFrance flagFrance
Actor0xSec

Post details

TargetLocal'Emploi (localemploi.fr), job platform
CountryFrance flagFrance
SectorEmployment / Recruitment
ClaimDatabase leaked (4 CSV files)
Data~26.9K records across 4 files
ObservedJun 15, 2026
PriceFree leak (reply-gated)
Actor0xSec

!Allegedly included

  • ~26,900 records (claimed)
  • 11,272 user records
  • 12,032 users with résumé refs
  • 3,487 job offers
  • 143 company records
  • Names, emails & phone numbers
  • Dates of birth, postal codes, cities
  • SIRET, company contacts, CV titles

Screenshots

Local'Emploi France alleged leak Screenshot 1 Screenshot 1 Redacted preview Local'Emploi France alleged leak Screenshot 2 Screenshot 2 Redacted preview

Potential impact

Because the actor presents this as a database leak rather than a public scrape, the per-record sensitivity is higher than a simple business directory. The user files reportedly contain job-seeker PII — full names, personal email addresses, phone numbers, dates of birth, postal codes and cities — alongside account and verification flags and references to uploaded CVs / résumés. The company file additionally lists contact names, emails, and SIRET business-registration numbers. This combination can support targeted phishing, recruitment and job-offer scams aimed at candidates, identity-related fraud, and bulk spam. No passwords, credentials, or financial/payment data appear in the listed fields. The scope and authenticity are unconfirmed.

iStatus

Unverified

Sample rows and the download were posted to an underground forum behind a reply-gate (“hidden content”); the sample records and download links are not reproduced here. The actor describes the data as a leaked database of the platform. The claim has not been independently confirmed and Local'Emploi has not publicly addressed it.

Want the non-redacted screenshots? Paid subscribers get all of the claim details and unredacted screenshots. Check out the threat feed or ransomware feed (whichever applies to this post), then after subscribing, search there for this alert to view the unredacted version. View pricing →

DARK WEB INFORMER - THREAT INTELLIGENCE

Related

Latest