Profil Search: over 100,000 candidate profiles exposed in a data leak
A threat actor known as Lagui published a database attributed to French recruitment firm Profil Search containing roughly 100,642 candidate records, exposing names, emails, phone numbers, postal addresses and professional details.
- Victim
- Profil Search
- records
- 100.6K
On 3 May 2026, Profil Search — a French recruitment and talent-acquisition firm that identifies, qualifies and tracks candidates on behalf of employers — was named as the source of a candidate database published on a leak forum by a threat actor using the alias Lagui.
The publication advertised a file containing roughly 100,642 complete entries, primarily covering French job seekers with some international profiles (including Morocco). The actor stated the dataset was not recent and had likely been obtained more than a year earlier, though no attack vector was disclosed.
Exposed data categories reportedly include:
- Civility, first and last name
- Email address
- Landline and mobile phone numbers
- Full postal address (postal code, city, country)
- Professional information (position sought, employer)
- Internal candidate file references
As of reporting, no official confirmation had been published by Profil Search and the status of the incident remains unverified. The combination of contact details and professional context makes the exposed records well suited to targeted phishing, fake-recruiter scams, fraudulent job offers and professional identity theft.
Sources
- cyberattaque.orghttps://www.cyberattaque.org/profil-search-plus-de-100-000-profils-candidats-exposes-dans-une-fuite-de-donnees/