A major data leak involving EmploiPartner.com, Algeria’s state-approved jobs and e-recruitment platform, has surfaced on Telegram.
The threat actor Dedale Office is now offering access to the platform’s full production database, which contains:
- 653,220 user accounts covering both job seekers and recruiters
- Full user data including:
- Email addresses
- Salted + hashed passwords
- Social media accounts (Facebook, LinkedIn, Twitter, Google)
- Full names
- Registration dates
- Account status
- Nearly 5 million job applications (exact count: 4,964,818)
A preview of the dump shows how detailed the records are — including not just login data, but also personal information, social IDs, and job application histories.
This is one of the largest leaks to hit Algeria’s employment sector so far this year. The amount of exposed data could lead to phishing, identity fraud, credential stuffing, and possible attacks on companies and recruiters using the platform.
It’s a reminder that platforms holding sensitive personal and employment data need stronger protections, especially in sectors like recruitment that often don’t prioritise cybersecurity.