Skip to content
Data breachUnknown

Djaboo: more than 25 GB of sensitive internal files published after a cyberattack

On 15 May 2026, more than 25 GB of internal data from French document-management platform Djaboo (djaboo.com) was published on a cybercriminal forum, including a full database dump and records for 12,378 CRM accounts, 6,372 client companies and 13,578 individuals.

Victim
Djaboo

On 15 May 2026, Djaboo β€” a French SaaS platform for electronic document management, dematerialization and document workflows (djaboo.com) β€” became the subject of a large data leak when a threat actor published more than 25 GB of stolen internal files on a cybercriminal forum.

According to the attacker's own description, the dump includes a complete MySQL database export dated 1 May 2026 (roughly 15 GB uncompressed), alongside application archives containing source code, Git repositories, configuration files, backups, logs and client-uploaded documents. Because Djaboo's platform acts as a central document hub for many businesses and organizations, the breach exposes data belonging to its clients as well as the company itself.

The leaked data reportedly includes:

  • A full MySQL database dump (CRM, accounts, application data)
  • Records for 12,378 CRM customer accounts, 6,372 unique client companies and 13,578 unique individuals identified by email
  • Email addresses tied to public bodies (e.g. CNIL, ADEME), financial institutions and large enterprises
  • Application source code, Git repositories and configuration files
  • Infrastructure backups, logs and client-uploaded files (including an "auth.zip" archive suggesting authentication material)

At the time of disclosure, the full scope of the compromise and the precise nature of the exposed data had not been officially confirmed, and no public response from Djaboo had been reported. The attack vector remains unknown. Observers flagged a high risk of follow-on identity theft, targeted phishing and credential-reuse attacks against the affected organizations.

Sources

  1. cyberattaque.orghttps://www.cyberattaque.org/djaboo-plus-de-25-go-de-fichiers-internes-sensibles-publies-apres-une-cyberattaque/
  2. frenchbreaches.comhttps://frenchbreaches.com/alertes/djaboo-mp8f8di2zk5rhgw4z9

Related incidents

Data breachOngoing

Leak at Once for all (via Actradis)

On 11 May 2026, Once For All disclosed unauthorized access to its Actradis B2B compliance platform, exposing professional contact data (names, professional emails, phone and contact details); a leaked database circulating since early May reportedly held about 305,000 records.

Victim
Once for all