Vigyata.AI
Is this your channel?

How ShinyHunters Stole 6 Million Odido Records by Phone #cybersecurity #shinyhunters #databreach

1.2K views· 141 likes· 2:45· Apr 25, 2026

MFA didn't stop them, because they didn't need to crack it. Inside the Odido breach: how ShinyHunters social-engineered a Dutch telco into handing over 6.2 million customer records. On the weekend of February 7, 2026, attackers phished login credentials from Odido's customer-service employees, then called those same employees pretending to be Odido's IT department and walked them through approving MFA prompts. Once inside Odido's Salesforce environment, scraping software pulled records on 6.2 million current and former customers — names, addresses, phone numbers, IBANs, dates of birth, and government ID numbers. Odido refused a €1M ransom (later cut to €500K), and ShinyHunters dumped the full cache online over four days at the end of February. Same playbook the group has been running against Salesforce customers since 2025: Panera Bread, SoundCloud, Crunchbase, Match Group, and hundreds more. Sources: https://haveibeenpwned.com/Breach/Odido https://www.bleepingcomputer.com/news/security/shinyhunters-extortion-gang-claims-odido-breach-affecting-millions/ https://www.theregister.com/2026/02/13/odido_breach/ More on cybersecurity, privacy, scams, and homelab on Hake Hardware. New shorts every weekday.

🎬 More from Hake Hardware