Skip to content
Data breachContained

Leak at HelloWork

In late December 2025, French recruitment platform HelloWork disclosed that data on roughly 2.8 million jobseekers — names, emails and professional-profile details — was scraped from its CV library via a fraudulently used recruiter account and offered for sale online.

Victim
HelloWork
records
2.8M

On 27 December 2025, HelloWork — one of France's largest online recruitment and job-search platforms — notified users that data on roughly 2.8 million jobseekers had been stolen from its CVthèque (CV library). The company was alerted on 24 December after a database attributed to the platform appeared for sale on a cybercrime forum (BreachForums); the underlying data is believed to date from around June 2025.

HelloWork said the incident did not stem from a direct intrusion into its systems. Instead, it resulted from the fraudulent use of a legitimate recruiter account, which was abused to mass-extract candidate profiles from the CV library. Passwords and banking details were not affected.

The exposed records covered jobseekers' professional profiles, including:

  • First and last name
  • Email address
  • Desired role / job sought
  • Qualification level
  • Work experience
  • Industries of interest
  • Contract types sought
  • Geographic mobility areas

HelloWork said it secured the affected data and tightened controls on recruiter-account access. The company filed a criminal complaint and notified France's data-protection regulator, the CNIL, in line with breach-disclosure obligations. It warned affected users to stay alert to phishing, fake-recruiter approaches and other scams that could exploit the leaked profiles.

Sources

  1. funinformatique.comhttps://www.funinformatique.com/fuite_de_donnees/hellowork/
  2. tpeactu.frhttps://tpeactu.fr/2025/12/27/hello-work-vol-donnees-cvtheque/
  3. aimgroup.comhttps://aimgroup.com/2026/01/08/rogue-recruiter-account-led-to-data-breach-at-hellowork/

Related incidents

Data breachUnknown

Leak at Europages

On 28 December 2025, a database of 205,403 B2B prospects from European business directory Europages was reported leaked, exposing contact and company-registration details (names, job titles, employers, postal and email addresses, phone numbers, SIRET and VAT identifiers).

Victim
Europages
Records
205.4K
Data breachContained

Data leak at SoundCloud

In December 2025, music-streaming platform SoundCloud disclosed a breach in which an attacker abused an internal system to map roughly 29.8 million private email addresses to public profile data — about 20% of its users; no passwords or payment data were taken.

Victim
SoundCloud
Records
29.8M
Data breachUnknown

Leak at Oui Heberg

On 10 November 2025, French web-hosting and VPS provider OuiHeberg was reported to have leaked customer contact records — names, email addresses, phone numbers and postal addresses — following a security incident affecting its infrastructure.

Victim
Oui Heberg
Data breachUnknown

Leak at MYM

In November 2025, a database of around 5 million records from French adult-content subscription platform MYM was published on a cybercrime forum, exposing creators' and subscribers' names, emails, postal addresses, phone numbers, IP addresses, birthdates and MD5-hashed passwords; the data traces back to a 2021 compromise.

Victim
MYM
Records
5.0M