Hackers pose as IT department to break into Odido’s systems
Dutch mobile operator Odido has disclosed a cyberattack that exposed personal data for around 6.2 million people, including its own customers and those of MVNO brand Ben NL. Leaked details include names, addresses, phone numbers, and bank account numbers, but not passwords, call logs, or billing data. Odido has reported the incident to the Dutch Data Protection Authority and says it has cut off unauthorised access and brought in external cybersecurity specialists.
The company has not publicly confirmed how the intrusion occurred, but Dutch broadcaster NOS, citing anonymous sources, reports that attackers used social engineering. According to that account, hackers first targeted customer service staff with phishing emails, then called them while posing as Odido’s IT department, persuading them to approve fraudulent login attempts. The employees involved are reported to include external call centre workers based outside the Netherlands. Odido has advised customers to watch for suspicious calls and messages.
More from Security
Authorities in the US, Canada and Germany have shut down infrastructure behind four major IoT botnets that hijacked more than 3 million devices worldw...
Acalvio has introduced 360 Deception, a new cyber defence tool aimed at disrupting AI-driven attack automation. The company positions the product as a...
Finnish operator Elisa has reworked how it runs its network by folding cybersecurity directly into day-to-day operations. Instead of treating security...
Siemens and Palo Alto Networks have combined their products to offer an AI-based cybersecurity package for industrial 5G networks. The setup pairs Sie...
Mobile operators are confronting a new security problem: hostile forces can use commercial cellular networks to control and coordinate unmanned aerial...
Bharti Airtel and cloud security firm Zscaler are setting up an AI-driven cyber threat research centre in India, aiming to shore up defences for criti...