The hacking group responsible for Odido’s recent data breach, known as ShinyHunters, has made good on its threat. The cybercriminal group has published the first batch of stolen customer data on the dark web.
This is after the telecom provider refused to pay a ransom of over €1 million. More leaks are promised every day for the next sixteen days.
The data was analysed and verified by RTL Nieuws, which first identified ShinyHunters as the group behind the major Odido breach.
What’s actually been published
The first release covers data belonging to around 430,000 individuals and 290,000 companies — including former customers who cut ties with Odido years ago.
Notably, the dataset also contains information on roughly 700 businesses that were never customers at all, only ever approached as potential clients.
What’s in there, you ask? Oh, only full names, home addresses, phone numbers, email addresses, IBANs, and internal customer service notes.
Those notes are particularly sensitive, revealing whether someone receives payment reminders or formal notices, holds a BKR debt registration, has a court-appointed administrator (bewindvoerder).
Essentially, this data, in combination with the release of financial information, tells criminals which customers are going to be easiest to exploit or scam.
The 275,000 IBANs are considered especially valuable, as they can be used for a wide range of financial fraud.
Passport, driver’s licence, and ID card numbers are not included in this first batch — but ShinyHunters has warned that more is coming.
Odido says no to the ransom
Odido has confirmed they have no intention of paying.
“On the advice of leading cybersecurity advisors and relevant government agencies, Odido has decided not to negotiate with these criminals and not to be blackmailed by them,” the provider said in a statement.
ShinyHunters wasn’t impressed. “Enjoy the daily data leaks in the coming days,” the group told RTL Nieuws. “More sensitive data will appear every day.”
The hackers claim to hold data on more than 10 million current and former customers. This is significantly above Odido’s confirmed figure of 6.2 million.
What this means for you
Right now, there’s no legal way for Odido customers to check whether their specific data has been included in the leak.
Given how accessible dark web markets have become, the published data could be misused for months to come — particularly for highly personalised phishing attempts and financial fraud.
READ MORE | Russia is ramping up hybrid attacks on the Netherlands, warns Dutch intelligence
Stay alert to unexpected calls, texts, or emails that seem to know a lot about you.
Verify any invoices through your Mijn Odido account and never share passwords or PINs, no matter how convincing the caller sounds.
Do you think Odido made the right call by refusing to pay? Let us know your thoughts in the comments.
My data was hacked and I recieved a patronising email from Odido giving that same trite advice about being ‘alert’ to scammers, not clicking on suspcious links- all that stuff we ALREADY KNOW. Simply pushing any potential future fall-out down to the individual and away from them. Companies wont care about hacking to any degree until they have to compensate individuals who were hacked.
This is not the moment for Odido to fall back on the stereotypical Dutch “frugality”. It’s time for them to prioritise their customers and protect their personal data—before the consequences affect everyone’s bottom line.
I already received a scam call from a hidden number pretending to be from ABN AMRO. They claimed my account had been accessed by someone and tried to obtain information about my banking details.
i will fill a claim and odido need to do something.