Telecom provider Odido has only two choices following a threat from the cybercriminal group ShinyHunters to publish stolen data: pay the ransom or refuse, according to Rolf van Wegberg, an associate professor at TU Delft who studies how cybercriminals profit.
Odido recently announced a data breach impacting personal details from 6.2 million accounts, such as bank account numbers, phone numbers, and ID information. According to the company’s website, “Our investigation shows that the incident involves personal data from a customer contact system used by Odido. No passwords, call records, or billing information were involved.”
ShinyHunters is responsible for the hack on Odido, RTL Nieuws reported. The telecom company is being pressured on the dark web to pay a ransom. Odido has so far declined to comment on its next steps or whether it intends to pay.
Van Wegberg believes that ShinyHunters’ public threat comes after private negotiations. “In cases like this, the parties usually first negotiate privately. If that fails, the next step is to apply public pressure,” he explained.
The cybercriminal group has escalated the situation, demanding more than 1 million euros and setting a payment deadline for Thursday morning, according to RTL Nieuws.
Van Wegberg believes Odido is now carefully considering its options, likely together with cybercrime specialists. “It’s an extremely complex decision, morally very difficult, and the company also bears responsibility toward its customers.”
You can read the full article here.
