Skip to content
Data breachUnknown

Leak at Oui Heberg

On 10 November 2025, French web-hosting and VPS provider OuiHeberg was reported to have leaked customer contact records — names, email addresses, phone numbers and postal addresses — following a security incident affecting its infrastructure.

Victim
Oui Heberg

On 10 November 2025, OuiHeberg — a French web-hosting, VPS and dedicated-server provider — was reported to have exposed personal data belonging to its customers following a security incident affecting its infrastructure.

The leaked records consisted of customer account and contact details rather than payment data. According to the breach listing, the exposed fields included:

  • Last name and first name
  • Email address
  • Phone number
  • Postal address

The incident sits against the backdrop of a wider security event that hit parts of OuiHeberg's VPS platform in late 2025, after which the provider rebuilt and consolidated its infrastructure. The precise attack vector and the total number of affected customers were not authoritatively confirmed at the time of disclosure, and the company had not published a detailed public breach statement, leaving the overall status unknown.

Sources

  1. bonjourlafuite.eu.orghttps://bonjourlafuite.eu.org/#Oui%20Heberg-2025-11-10
  2. ouiheberg.comhttps://www.ouiheberg.com/en

Related incidents

Data breachUnknown

Leak at Europages

On 28 December 2025, a database of 205,403 B2B prospects from European business directory Europages was reported leaked, exposing contact and company-registration details (names, job titles, employers, postal and email addresses, phone numbers, SIRET and VAT identifiers).

Victim
Europages
Records
205.4K
Data breachContained

Leak at HelloWork

In late December 2025, French recruitment platform HelloWork disclosed that data on roughly 2.8 million jobseekers — names, emails and professional-profile details — was scraped from its CV library via a fraudulently used recruiter account and offered for sale online.

Victim
HelloWork
Records
2.8M
Data breachContained

Data leak at SoundCloud

In December 2025, music-streaming platform SoundCloud disclosed a breach in which an attacker abused an internal system to map roughly 29.8 million private email addresses to public profile data — about 20% of its users; no passwords or payment data were taken.

Victim
SoundCloud
Records
29.8M
Data breachUnknown

Leak at MYM

In November 2025, a database of around 5 million records from French adult-content subscription platform MYM was published on a cybercrime forum, exposing creators' and subscribers' names, emails, postal addresses, phone numbers, IP addresses, birthdates and MD5-hashed passwords; the data traces back to a 2021 compromise.

Victim
MYM
Records
5.0M