- Odido cyber attack exposed sensitive data of 6.2 million Dutch customers
- Stolen details include names, addresses, telephone numbers, IBANs and ID document numbers
- Services remained unaffected; attackers unknown, data not yet seen on dark we
Dutch telecommunications company Odido has confirmed that it has suffered a cyber attack and lost sensitive data on millions of people.
In a statement published on its website, the company said it “deeply regrets” the situation and is “fully committed” to limiting its impact.
“Based on investigation, the incident concerns personal data from a customer contact system used by Odido,” reads the message, machine translated. “There are no passwords, call details or billing information involved.”
Telecom companies are a primary target
The company also said that its services remain uninterrupted and that the unauthorized access was ended as soon as possible. Third-party cybersecurity experts were called in to assist, and affected customers were notified.
The announcement said nothing about the identity of the attackers, the nature of the incident or the number of people affected – but in connection with local media, the company said that 6.2 million customers were affected and these lost a combination of the following:
Full name
Address and residence
Mobile number
Customer number
Email address
IBAN (account number)
Date of birth
Identification data (passport or driving license number and validity)
The incident, which apparently occurred on February 7, 2026, did not compromise passwords, call logs, location data, billing information, or scans of ID documents.
Odido is a large Dutch telecommunications provider offering mobile, fiber broadband and TV services to both consumers and business customers. It operates nationwide 5G and fiber networks and operates brands including Ben, Simpel and Tele2 Thuis. The telco serves about eight million customers and employs over 2,000 people, and by 2024 it generated about €2.3 billion in revenue (about $2.5 billion).
Due to the nature of the data they generate, telecommunications companies are often prime targets, especially for state-sponsored threat actors. So far, no group has claimed responsibility for this attack, and the data has yet to appear on the dark web.
Via Bleeping Computer
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
