Basic-Fit, the largest gym chain in Europe, has confirmed a significant data breach compromising the personal information of approximately 1 million members. The Netherlands-based company reported that it detected unauthorized access to its systems, although the intrusion was quickly blocked. However, the investigation showed that hackers had managed to download sensitive information, including names, email addresses, physical addresses, phone numbers, dates of birth, and bank account details of active members across several countries.
Basic-Fit has over 5 million members and operates 1,500 clubs throughout Europe. The breach predominantly affects members in the Netherlands, with around 200,000 impacted there alone. Other affected members are located in Spain, Germany, France, Belgium, and Luxembourg. Although the company does not store identification documents and no passwords were accessed during the breach, the exposure of financial and personal data is concerning.
Currently, it remains unclear who orchestrated the attack, and no known ransomware groups have claimed responsibility. Basic-Fit has stated that there is no evidence of the stolen data being leaked or misused at this time. The company is taking steps to address the breach and mitigate potential risks to its members.


