Odido, the largest mobile phone company in the Netherlands, may soon see sensitive data from millions of its customers leaked online, the ShinyHunters attacker group claims on the dark web.
-
ShinyHunters threatens to leak 21 million records from Odido and Ben NL on the dark web
-
Alleged stolen data includes full names, physical addresses, plain text passwords, IBAN details, and passport numbers
-
Experts warn of high risks regarding identity theft and personalized social engineering campaigns targeting Odido clients
The notorious extortion gang, ShinyHunters, posted Odido and its virtual mobile network Ben NL on the gang’s dark web blog, which it uses to showcase its latest victims.
“This is a final warning to come back to our chat and finish what we set out to do before we leak along with several annoying (digital) problems that’ll come your way,” attackers said in a blog post.
The gang claims access to 21 million personal records that contain sensitive information, which allegedly includes:
- Full names
- Physical addresses
- Email addresses
- Phone numbers
- Plaintext passwords
- IBAN details
- Passport numbers
- Driver’s licence numbers
- Corporate data
The attackers did not provide a data sample, so it is impossible to verify their claims at this point. However, our research team believes that if the ShinyHunters' claims are true, Odido customers would face serious risks of identity theft and fraud.
“There is also a high risk that the data could be exploited for social engineering campaigns. As the alleged breach includes a lot of data points, the malicious campaigns could be highly personalized and target either employees or Odido customers,” Cybernews researchers explained.
We have reached out to Odido for comment and will update this article once we receive a reply.
Echoes of an earlier Odido data breach
In early February, Odido announced that the company had suffered a data breach of its customer relationship management system, with unnamed attackers accessing personal data of 6.2 million Odido customers.
Odido's client base hovers around 7 million, meaning the attack exposed nearly all of the company’s customers.
The type of exposed customer records the company mentioned in the data breach announcement earlier this month closely resembles ShinyHunters' dark web claims.
Moreover, the attack happened after the attackers gained access to Odido’s Salesforce environment. To pull off the data breach, the hackers sent phishing emails to individual staff members of Odido’s customer service, asking them for their login details.
ShinyHunters targeted Salesforce last year, threatening to target hundreds of its customers if the company refused to pay a ransom. The gang is also known for using social engineering to obtain login credentials from the target organization's staff.
While the February Odido data breach does not have a clearly named culprit, there’s a high chance that ShinyHunters was behind the attack.
The gang has been dominating headlines following several high-profile attacks on well-known companies.
ShinyHunters has recently claimed attacks against Bumble, dating apps Hinge, Match, and OkCupid, as well as two heavyweight US investment advisory firms – Mercer Advisors and Beacon Pointe Advisors.
Unlock more exclusive Cybernews content on YouTube.
Your email address will not be published. Required fields are markedmarked