// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-hibpDTG 0600Z
Breach Record

Odido

DISCLOSED 2026-02-12 · STOLEN CREDS · 6,077,025 RECORDS EXPOSED

In February 2026, Dutch telco Odido was the victim of a data breach and subsequent extortion attempt. Shortly after, a total of 6M unique email addresses were published across four separate data releases over consecutive days. The exposed data includes names, physical addresses, phone numbers, bank account numbers, dates of birth, customer service notes and passport,...

The record

What we know

Disclosed
2026-02-12
Attack vector
Stolen Creds
Records exposed
6,077,025
Domain
odido.nl
Data classes exposed
Bank account numbersCustomer service commentsDates of birthDriver's licensesEmail addressesGendersGovernment issued IDsNamesPassport numbersPhone numbersPhysical addresses
Sources

Cited reporting

Similar vector · recent

Other stolen creds breaches on file

This page is the permanent ColdRecon entry for the Odido disclosure. It updates if new public reporting emerges. All tracked breaches →

Odido just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →