Endesa, a major Spanish energy company, experienced a significant data breach that compromised customer information. Hackers gained unauthorized access to the company's commercial platform, affecting around 10 million customers in Spain and more across Europe. Stolen data includes personal identification details, contact information, national identification numbers (DNI), contract specifics, and payment information like IBANs. Endesa reported that no passwords were taken, and they quickly contained the incident, implementing new security measures. The breach came to light after a hacker claimed to have stolen 1.05 terabytes of data from Endesa, asserting it involved over 20 million customers. This assertion raised questions, as Endesa's customer count does not match those numbers. Customers expressed frustration on social media, criticizing the company's handling of the breach and the communication surrounding it. Endesa has advised customers to stay alert for potential identity theft or phishing attempts but maintains that operations are functioning normally.