Odido confirmed hackers accessed its customer contact system and exfiltrated personal data affecting more than 6.2 million customers, including some former customers from the past two years.

The exposed dataset includes IBAN bank account numbers and government ID details, increasing immediate fraud and identity-theft risk and likely driving a surge in customer support load and remediation costs (notifications, credit monitoring, account changes). Former customers are in scope, expanding outreach and compliance obligations beyond the active subscriber base. Because core telecom services were not disrupted, the primary operational impact is security incident response and regulatory scrutiny rather than network availability.