Dark Web Informer — Cyber Threat Intelligence
Alleged Data Breach of Loxam — 828K Delivery Records and 94,735 Routes Spanning 2020 to 2026
France
Quick Facts
Date & Time
2026-02-04 16:47:35 UTC
Threat Actor
HexDex
Victim Country
FranceIndustry
Building & Construction
Victim Organization
Loxam
Victim Site
Category
Data Breach
Severity
🟡 Medium
Network
Open Web
Victim Profile
Loxam
European leader in equipment rental for construction, industrial, and events sectors Organization
Loxam
Sector Type
Private
Industry
Building & Construction / Equipment Rental
Country
France Domain
Claimed Data Size
~60 GB
Description
Loxam is a European leader in equipment rental for the construction, industrial, and events sectors. Founded in 1967 in France, the company operates 1,091 agencies in 30 countries, including 400 in France, and employs 11,800 people. With a revenue of €2.6 billion, Loxam ranks as the fourth largest equipment rental company worldwide. It manages a fleet of 600,000 machines and also provides transport and insurance services. The company was a major partner for the 2024 Paris Olympics.
Incident Overview
A threat actor using the handle "HexDex" has posted a listing claiming to sell a large dataset tied to Loxam's delivery operations in France and across Europe. The listing describes 94,735 delivery routes containing 828,000 stop points, spanning January 2020 through February 2026, with a total data size of approximately 60 GB.
