{"id":45376,"date":"2026-04-14T06:36:58","date_gmt":"2026-04-13T22:36:58","guid":{"rendered":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/04\/14\/european-gym-giant-basic-fit-data-breach-affects-1-million-members\/"},"modified":"2026-04-14T06:36:58","modified_gmt":"2026-04-13T22:36:58","slug":"european-gym-giant-basic-fit-data-breach-affects-1-million-members","status":"publish","type":"post","link":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/04\/14\/european-gym-giant-basic-fit-data-breach-affects-1-million-members\/","title":{"rendered":"European Gym giant Basic-Fit data breach affects 1 million members"},"content":{"rendered":"\n<p style=\"text-align:center\"><img loading=\"lazy\" decoding=\"async\" height=\"900\" src=\"https:\/\/www.bleepstatic.com\/content\/hl-images\/2026\/04\/13\/BasicFit.jpg\" width=\"1600\" alt=\"European Gym giant Basic-Fit data breach affects 1 million members\"><\/p>\n<p>Dutch fitness giant Basic-Fit announced that hackers breached its systems and gained access to information belonging to a million of its customers.<\/p>\n<p>The company operates the largest gym chain in Europe, owning more than 1,700 clubs and over 430 franchises in 12 countries, including the Netherlands, Belgium, France, Spain, and Germany.<\/p>\n<p>In a disclosure published on its website earlier today, Basic-Fit states that club members impacted by the cyberattack have been informed directly.<\/p>\n<div align=\"center\" style=\"width:98%; margin:0 auto; text-align:center; padding:4px; background:#f0f0f0; border:1px solid #ccc; border-radius:6px;\">  <a href=\"https:\/\/www.adaptivesecurity.com\/demo\/security-awareness-training?utm_source=display_network&amp;utm_medium=paid_display&amp;utm_campaign=2026_04_display_bleepingcomputer&amp;utm_id=701Rd00000fE8REIA0&amp;utm_content=970x250\" rel=\"nofollow noopener\" target=\"_blank\"><img decoding=\"async\" src=\"https:\/\/www.bleepstatic.com\/c\/a\/as-tour-the-platform-970-x250.jpg\" style=\"margin-top: 0px;\" alt=\"European Gym giant Basic-Fit data breach affects 1 million members\"><\/a> <\/div>\n<p>&ldquo;Today, Basic-Fit has notified the relevant data protection authority concerning unauthorized access to the system that records members&rsquo; visits to Basic-Fit clubs,&rdquo; reads the<a href=\"http:\/\/www.documentcloud.org\/documents\/28037997-basic-fit-press\/\" rel=\"nofollow noopener\"> notification<\/a>.<\/p>\n<p>&ldquo;The unauthorized access was detected by our system monitoring processes and was stopped within minutes of discovery.&rdquo;<\/p>\n<p>Despite the claimed quick response, an investigation conducted with the help of external security experts found that the attacker exfiltrated data belonging to some Basic-Fit members, which includes the following:<\/p>\n<ul>\n<li>Full name<\/li>\n<li>Physical address<\/li>\n<li>Email address<\/li>\n<li>Phone number<\/li>\n<li>Date of birth<\/li>\n<li>Bank account details<\/li>\n<li>Other membership information<\/li>\n<\/ul>\n<p>It is important to note that customer data at Basic-Fit franchises has not been exposed in the incident, as it is stored on a separate system.<\/p>\n<p>In the public disclosure, the company specified that the number of affected individuals in the Netherlands is 200,000. However, a spokesperson told BleepingComputer that the total number is around 1 million members in the Netherlands, Belgium, Luxembourg, France, Spain, and Germany.<\/p>\n<p>The Basic-Fit representative noted that the gyms across Europe have around five million members.<\/p>\n<p>According to the official disclosure, no identification documents or account passwords were accessed as a result of the data breach.<\/p>\n<p>Based on data retention laws in the European Union, Basic-Fit is required to delete all personal data and membership automatically after two years.<\/p>\n<p>Customers can access data in their&nbsp;My Basic-Fit app one year after termination. Information in the app should be removed automatically two months after uninstalling it from the device, and upon membership termination.<\/p>\n<p>Basic-Fit says that its investigation of the incident&#8217;s impact did not reveal that the data was leaked online. Nevertheless, the company will continue to monitor with the help of external experts.<\/p>\n<style> .ia_ad {     background-color: #f0f6ff;     width: 95%;     max-width: 800px;     margin: 15px auto;     border-radius: 8px;     border: 1px solid #d6ddee;     display: flex;     align-items: stretch;     padding: 0;     overflow: hidden; }  .ia_lef {     flex: 1;     max-width: 200px;     height: auto;     display: flex;     align-items: stretch; }  .ia_lef a {     display: flex;     width: 100%;     height: 100%; }   .ia_lef a img {     width: 100%;     height: 100%;          border-radius: 8px 0 0 8px;     margin: 0;     display: block; }  .ia_rig {     flex: 2;     padding: 10px;     display: flex;     flex-direction: column;     justify-content: center; }  .ia_rig h2 {     font-size: 17px !important;     font-weight: 700;     color: #333;     line-height: 1.4;     font-family: Georgia, \"Times New Roman\", Times, serif;     margin: 0 0 14px 0; }  .ia_rig p {     font-weight: bold;     font-size: 14px;     margin: 0 0 clamp(6px, 2vw, 14px) 0; }  .ia_button {     background-color: #FFF;     border: 1px solid #3b59aa;     color: black;     text-align: center;     text-decoration: none;     border-radius: 8px;     display: inline-block;     font-size: 16px;     font-weight: bold;     cursor: pointer;     padding: 10px 20px;     width: fit-content; }  .ia_button a {     text-decoration: none;     color: inherit;     display: block; }  @media (max-width: 600px) {     .ia_ad {         flex-direction: column;         align-items: center;     }      .ia_lef {         max-width: 100%;     }      .ia_lef a img {         border-radius: 8px 8px 0 0;     }       .ia_rig {         padding: 15px;         width: 100%;     }      .ia_button {         width: 100%; \tmargin: 0px auto;     } } <\/style>\n<div>\n<div>         <a href=\"https:\/\/hubs.li\/Q048zztN0\" target=\"_blank\" rel=\"noopener sponsored\">             <img decoding=\"async\" src=\"https:\/\/www.bleepstatic.com\/c\/p\/picus-whitepaper.jpg\" alt=\"European Gym giant Basic-Fit data breach affects 1 million members\">         <\/a>     <\/div>\n<div>\n<h2><a href=\"https:\/\/hubs.li\/Q048zztN0\" target=\"_blank\" rel=\"noopener sponsored\">Automated Pentesting Covers Only 1 of 6 Surfaces.<\/a><\/h2>\n<p>Automated pentesting proves the path exists. BAS proves whether your controls stop it. Most teams run one without the other.<\/p>\n<p>This whitepaper maps six validation surfaces, shows where coverage ends, and provides practitioners with three diagnostic questions for any tool evaluation.<\/p>\n<p>           <button><a href=\"https:\/\/hubs.li\/Q048zztN0\" target=\"_blank\" rel=\"noopener sponsored\">Get Your Copy Now<\/a><\/button>     <\/div>\n<\/p><\/div>\n<div>\n<h3>Related Articles:<\/h3>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/new-bookingcom-data-breach-forces-reservation-pin-resets\/\">New Booking.com data breach forces reservation PIN resets<\/a><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/eurail-says-december-data-breach-impacts-300-000-individuals\/\">Eurail says December data breach impacts 300,000 individuals<\/a><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/dutch-finance-ministry-takes-treasury-banking-portal-offline-after-breach\/\">Dutch Finance Ministry takes treasury banking portal offline after breach<\/a><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/ajax-football-club-hack-exposed-fan-data-enabled-ticket-hijack\/\">Ajax football club hack exposed fan data, enabled ticket hijack<\/a><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/dutch-ministry-of-finance-discloses-breach-affecting-employees\/\">Dutch Ministry of Finance discloses breach affecting employees<\/a><\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Dutch fitness giant Basic-Fit announced that hackers br [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[28],"tags":[],"class_list":["post-45376","post","type-post","status-publish","format-standard","hentry","category--bleepingcomputer"],"_links":{"self":[{"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/posts\/45376","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/comments?post=45376"}],"version-history":[{"count":0,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/posts\/45376\/revisions"}],"wp:attachment":[{"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/media?parent=45376"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/categories?post=45376"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/tags?post=45376"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}