Odido breach: a major cyberattack has exposed data tied to more than six million telecom accounts in the Netherlands.
Odido, the Dutch operator that rebranded from T-Mobile Netherlands, said attackers accessed a customer contact system and downloaded customer information. The company says its network services stayed up during the incident, and customers can keep using calls, internet, and TV without disruption. Reuters reported that exposed fields in impacted systems included names and contact details, and also sensitive items such as bank account details and passport-related data.
What happened in the Odido breach
Odido said it detected signs of unauthorized access on February 7, 2026, and started an investigation with internal and external specialists. Reuters reported that the intrusion affected a system Odido uses to contact customers and that access was later terminated. Odido reported the incident to the Dutch privacy regulator, the Autoriteit Persoonsgegevens (AP), and began notifying affected people.
In a customer-facing statement about the Odido breach, Odido said operational service delivery was not affected and that “customers can continue to safely make calls, use the internet, and watch TV.” The company framed the event as a cyberattack by criminals and said it is working to limit harm.
What data may have been exposed
Reports about the Odido breach converge on two important points: the scale is very large, and the exposed data can enable fraud. Reuters said the stolen information included customer names, telephone numbers, email addresses, bank account numbers, birth dates, and passport numbers. Other coverage described similar fields and emphasized that the affected environment was a customer contact or CRM-type system.
That mix matters because it supports account takeover attempts and convincing phishing. When bank or government ID fields are involved, criminals can also try payment fraud, synthetic identity fraud, or targeted social engineering.
What Odido says customers should do
Odido has stressed that core telecom services remain safe to use, despite the Odido breach. That reduces immediate outage risk, but it does not eliminate identity and fraud risk.
Practical steps customers can take now include:
Treat unexpected “Odido” calls, texts, and emails as suspicious, especially those seeking codes or payments.
Change passwords on email accounts first, since email access enables many downstream resets.
Use multi-factor authentication where possible, particularly for banking and telecom portals.
Monitor bank activity and credit signals for unusual behavior.
Odido’s own guidance focuses on support and awareness, including direct outreach to affected customers.
Why this breach is a big test for Dutch and EU oversight
A telecom incident at this size can trigger scrutiny from multiple directions. The AP can investigate privacy compliance and security safeguards. Law enforcement may pursue the criminal side. Civil actions may follow if consumers face measurable harm.
The Odido breach also lands in a European context where regulators expect fast detection, clear disclosure, and strong remediation. In practice, that means firms must show they limited access quickly, reduced exposure, and tightened controls across customer systems.
What it signals for telecom security spending
Telecom firms are high-value targets because they sit at the center of daily identity flows. Phone numbers are used for login recovery, two-factor codes, and customer verification. That makes telecom data attractive even when passwords are not involved.
In that light, the Odido breach reinforces several priorities:
Identity protection and anti-phishing measures for customers.
Stronger segmentation and monitoring around customer contact platforms.
Faster anomaly detection and incident response automation in security operations centers.
Tighter vendor risk controls for systems that store customer identifiers.
For customers, the key takeaway is simple. Even when services stay online, the Odido breach can still increase fraud risk for months.
Sources
text Reuters (Feb 12, 2026): https://www.reuters.com/business/media-telecom/dutch-telecom-odido-hacked-6-million-accounts-affected-2026-02-12/ Odido newsroom statement (Feb 2026): https://newsroom.odido.nl/en-us/odido-informs-customers-of-cyber-attack/ TechCrunch (Feb 13, 2026): https://techcrunch.com/2026/02/13/dutch-phone-giant-odido-says-millions-of-customers-affected-by-data-breach/ Mobile World Live (Feb 2026): https://www.mobileworldlive.com/europe/odido-cyberattack-hits-6m-accounts/