MFA didn't stop them, because they didn't need to crack it. Inside the Odido breach: how ShinyHunters social-engineered a Dutch telco into handing over 6.2 million customer records. On the weekend of February 7, 2026, attackers phished login credentials from Odido's customer-service employees, then called those same employees pretending to be Odido's IT department and walked them through approving MFA prompts. Once inside Odido's Salesforce environment, scraping software pulled records on 6.2 million current and former customers — names, addresses, phone numbers, IBANs, dates of birth, and government ID numbers. Odido refused a €1M ransom (later cut to €500K), and ShinyHunters dumped the full cache online over four days at the end of February. Same playbook the group has been running against Salesforce customers since 2025: Panera Bread, SoundCloud, Crunchbase, Match Group, and hundreds more. Sources: https://haveibeenpwned.com/Breach/Odido https://www.bleepingcomputer.com/news/security/shinyhunters-extortion-gang-claims-odido-breach-affecting-millions/ https://www.theregister.com/2026/02/13/odido_breach/ More on cybersecurity, privacy, scams, and homelab on Hake Hardware. New shorts every weekday.

New VS Code Zero-Day Steals GitHub Tokens in One Click
1.5K views

Microsoft Backs Down on Threats Against Zero-Day Researcher
6.4K views

CIFSwitch Linux Kernel Bug: Any Logged-In User Gets Root
2.3K views

BusPatrol Wants 40,000 School Buses to Be Police Plate Trackers
4.2K views

How the Mirai Trio Avoided Prison (Part 6 of 6)
1.7K views

How the FBI Tracked Down the Mirai Trio (Part 5 of 6)
1.6K views