Odido — 6.1M accounts
Severity: Medium · Kind: Data breach
We've ingested this item but haven't summarised it yet. Read the upstream advisory using the link below in the meantime — the AI summary will appear here once the next run completes.
From the source
In February 2026, Dutch telco Odido was the victim of a data breach and subsequent extortion attempt . Shortly after, a total of 6M unique email addresses were published across four separate data releases over consecutive days. The exposed data includes names, physical addresses, phone numbers, bank account numbers, dates of birth, customer service notes and passport, driver’s licence and European national ID numbers. Odido has published a disclosure notice including an FAQ to support affected customers.
Breach facts
- Accounts affected
- 6,077,025
- Verified
- Yes
- Sensitive
- No
- Domain
- odido.nl
- Data exposed
- Bank account numbersCustomer service commentsDates of birthDriver's licensesEmail addressesGendersGovernment issued IDsNamesPassport numbersPhone numbersPhysical addresses
Was this useful?
Plain-English summaries are AI-generated and reviewed for tone, not technical accuracy. For incident response, always rely on the original source linked above.