Data Breach Overview
A user on DarkForums claimed in October 2025 to have compromised a French MySQL server, leading to the exposure of over 77GB of SQL database files. The leak includes approximately 180 files with an estimated 250 million lines of data. Despite the French origin of the server, the attacker noted that none of the databases were directly related to the French industry.

Where Was the Data Found?
The data was shared via an onion link on the dark web and posted on DarkForums. The leak contains primarily European business data, along with entries from the US and South America. A plaintext file describing each SQL file (including filenames, column names, and row counts) was also provided to help potential downloaders assess the dataset before retrieving the full archive.

The compressed ZIP file is 13GB, expanding to 77GB upon extraction.

A Screenshot of the data can be found below:

Company Data Breach History
As the server and database owners remain unidentified, there is no documented breach history available for attribution.

Impact and Risks
The exposed datasets appear to include business identifiers (e.g., French SIREN codes), addresses, contact emails, and phone numbers. Even though some of the data is old (dating back to 2014), the information can still be misused for:

• Business identity theft

• Targeted phishing campaigns

• Email and phone-based fraud

• Data aggregation for corporate profiling

Given the scale, it could also be used in social engineering or competitive intelligence operations.

Recommendations for Users
If you believe your business or personal data may have been part of this breach:

• Audit your company’s digital footprint, especially public records and exposed databases.

• Monitor for suspicious communication, particularly targeting business contacts.

• Use unique credentials for services tied to business accounts.

• Report any suspected misuse to relevant data protection authorities.

What is InsecureWeb?

InsecureWeb is a Dark Web monitoring service that keeps track of recent data breaches and tracks their impact by monitoring the darkest places of the internet.

Our commitment lies in providing top-notch cybersecurity services to our clients. Through continuous monitoring of the dark web and advanced threat detection methodologies, we strive to identify potential breaches promptly, enabling swift response and mitigation efforts. With our state-of-the-art tools and expertise, we prioritize the confidentiality, integrity, and availability of our clients’ data.