Odido Telecom, a prominent telecommunications provider in the Netherlands, has suffered a significant data breach affecting 6.2 million customer accounts. The cyberattack, confirmed on February 12, 2026, has brought to light serious concerns over data security and potential phishing threats.
Cyberattack Details and Initial Response
The cyber intrusion was detected over the weekend of February 7-8, 2026, when hackers managed to access Odido’s customer relationship management system. The attackers downloaded sensitive customer information before the telecom company could secure the system against further unauthorized access.
An intriguing twist to the incident is that the hackers themselves notified Odido, claiming possession of millions of records. Despite the scale of the breach, no group has taken responsibility, and there is no evidence that the stolen data has been made available online or on the dark web as of February 12, 2026.
Scope and Impact of the Breach
The data compromised in this attack includes customers’ full names, addresses, mobile numbers, customer numbers, email addresses, IBAN bank account numbers, dates of birth, and government-issued ID details such as passport or driver’s license numbers. Fortunately, passwords for the “My Odido” portal, call logs, and location data remain secure.
Odido has assured its customers that its core operations, including mobile, internet, and TV services, are functioning without disruption. Owned by Apax Partners and Warburg Pincus, the telecom giant emphasizes that customers can continue their usual activities like calling, browsing, and streaming.
Customer Advisory and Security Measures
In response to the breach, Odido is actively informing affected customers through emails and SMS, outlining the specific impacts on their accounts. The company has also reported the incident to the Dutch Data Protection Authority, complying with European Union regulations.
To fortify its defenses, Odido has engaged external cybersecurity firms to enhance system monitoring and staff training. CEO Søren Abildgaard expressed deep regret over the incident and reaffirmed the company’s commitment to mitigating the breach’s impact, offering ongoing support to customers via a dedicated webpage with updates and safety tips.
Experts highlight the potential misuse of the stolen data for impersonation scams or phishing attacks, urging customers to be vigilant against suspicious communications. Recommendations include verifying the authenticity of calls and emails, safeguarding passwords, and accessing invoices solely through the “My Odido” portal.
While Odido is taking steps to prevent future incidents, the exposure of 6.2 million records significantly raises the risk of identity theft. Customers are encouraged to stay informed through updates on Odido’s website and practice caution amid increasing cyber threats.
