Leak at France Travail
On 12 August 2025, France Travail, France's public employment agency, disclosed unauthorized access to its employer-facing job portal that exposed the contact details of business users — names, email addresses, phone numbers and an internal technical identifier.
- Victim
- France Travail
On 12 August 2025, France Travail — France's national public employment agency — notified some of its partners and users by email that its employer-facing job portal (the "espace entreprises" used by recruiters and businesses) had been hit by a cyberattack in which unauthorized parties accessed personal data.
This was a distinct, smaller incident from the agency's other 2025 breaches: it affected the business/recruiter side of the platform rather than jobseeker accounts, and is separate from the July 2025 leak that exposed roughly 340,000 jobseekers and from the larger 2024 third-party compromise. The exposed information was professional contact data tied to the portal's business users.
Data categories accessed included:
- Last name and first name
- Email address
- Phone number
- An internal France Travail technical identifier (distinct from login credentials)
France Travail said it immediately shut down the affected portal and launched an analysis to determine the origin and scope of the attack. The incident was reported to the CNIL, France's data protection authority, and affected users were urged to stay alert to phishing attempts using the leaked contact details. No financial data or passwords were reported as compromised, and no reliable count of affected users has been published for this specific August incident.
Sources
- idprotect.frhttps://idprotect.fr/france-travail-victime-dune-nouvelle-fuite-de-donnees/
- cnil.frhttps://www.cnil.fr/fr/france-travail-la-cnil-enquete-sur-la-fuite-de-donnees-et-donne-des-conseils-pour-se-proteger
- all-it-network.comhttps://all-it-network.com/nouvelle-cyberattaque-contre-france-travail-31-000-comptes-exposes/