Dutch Police Uncover Evidence of Local Accomplices in Odido Telecom Data Breach
Dutch police have identified evidence suggesting local criminals played a role in the cyberattack on telecom provider Odido, which exposed the personal data of over 6 million customers.

Dutch police announced on Thursday that their investigation into the cyberattack on telecom provider Odido has uncovered evidence pointing towards the involvement of domestic criminals. The breach, which occurred earlier this year, resulted in the exposure of personal data belonging to more than 6 million customers.
Authorities revealed that a Dutch-speaking individual, posing as an Odido IT employee, contacted the company's customer service department prior to the February attack. This individual reportedly assisted in tricking employees into granting access that ultimately enabled hackers to steal customer information. Police are actively working to identify this caller, along with any other potential suspects, and have urged the public to come forward with any relevant information.
In a statement, Dutch police indicated that a recording of the caller's voice might be released publicly at a later stage if deemed necessary for the investigation. This development adds a new dimension to the understanding of how the attackers gained initial access.
Previously, Dutch cyber authorities had stated that the attackers gained entry through a compromised customer contact system utilized by Odido. This allowed them to download customer records, though the company maintained that the incident did not disrupt its operational services. The police also confirmed that they had successfully taken several servers offline shortly after the attack, which were believed to be used by the hacker group for distributing the stolen data.
"Investigations like these are often complex and take time, but cybercriminals are vulnerable too and leave traces behind," the police statement emphasized. This suggests a methodical approach to tracing digital footprints left by the perpetrators.
Authorities are operating under the belief that those responsible for the attack discussed their activities online or within their social circles. They are appealing to members of the cybercriminal community who may possess information that could aid in identifying the individuals involved.
The investigation is expected to continue for several more months, and police have cautioned that it is too early to predict the final outcome. The focus remains on apprehending those responsible and understanding the full scope of their involvement.
This latest development highlights the persistent challenge of attributing cyberattacks, especially when domestic actors may be involved, and underscores the importance of public cooperation in bringing cybercriminals to justice.
Dutch police have announced they have "strong indications" that Dutch hackers were involved in the February breach at telecommunications provider Odido. The investigation revealed that a Dutch-speaking individual impersonated an Odido IT employee during a phone call to the company's customer service, leading to the company being phished and subsequently suffering data theft. This new detail provides a clearer picture of the social engineering tactics employed in the attack.