Data Breach

Odido hack: 6.2 million customers breached — over a third of the Netherlands exposed

Dutch telecom Odido confirmed 6.2M customer accounts compromised. Passport scans, IBANs leaked.

February 15, 2026 4 min read

On 12 February, Odido confirmed that personal data from 6.2 million customer accounts had been stolen. In a country of 17 million, that's one in three Dutch residents. Names, addresses, bank account numbers, passport scans, driver's licences. Within weeks, data of government ministers and intelligence personnel was identified in the leak.

What happened

Attackers breached Odido's CRM system. Linked to ShinyHunters (same group behind Kering breach). Four cabinet ministers, a senior AIVD intelligence employee, three individuals under government protection. 16,000+ people in vital sectors identified in the data.

The CRM attack pattern

  • Aug 2025: Drift/Salesforce → Proofpoint, Tenable
  • Sep 2025: Kering/Salesforce → 7.4M customers
  • Oct 2025: Oracle EBS → Harvard, Envoy Air
  • Jan 2026: Conduent → 26M Americans
  • Feb 2026: Odido CRM → 6.2M Dutch customers

What to do

  1. Assume data is public. Full dataset leaked.
  2. Monitor bank accounts. IBANs stolen.
  3. Watch for identity fraud. Passport scans enable impersonation.
  4. Hyper-alert for phishing. Attackers have your real data.