Trenitalia Suffers Cyberattack, Customer Data Compromised
Trenitalia, the Italian state-owned railway company, notified customers on June 26, 2026, about a cyberattack that led to unauthorized access of personal data related to travel tickets. The company detected the incident through internal checks and attributed it to 'unidentified external parties.' The attack itself reportedly occurred in November 2025. Compromised data included demographic and identification details, contact information, travel specifics, and loyalty card numbers, but no payment information or account credentials were affected.
Signal context
First seen: Jun 26, 2026
Last updated: Jun 26, 2026
Status: Public signal
Key points
- Cyberattack by unidentified external parties.
- Unauthorized access to personal data linked to travel tickets.
- Exposed demographic data, contact details, travel information, and loyalty card numbers.
Signal analysis
BetaThis analysis groups the signal by industry, likely incident action and impacted security area. It helps compare this signal with other published signals without treating the labels as final determinations.
Sector: Finance and Insurance
Likely country: 🇮🇹 Italy
inferred from source domains
Watch internet-facing systems, credential abuse and exploit activity.
- Source type: outside the affected organization
Impact area: Confidentiality
Likely asset: User or customer data
- 21 signals in the same sector
- 94 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
Cyberattacco a Trenitalia: violati i dati personali di milioni di passeggeri - Federprivacyhttps://www.federprivacy.org/informazione/flash-news/cyberattacco-a-trenitalia-violati-i-dati-personali-dei-passeggeriPublic source from federprivacy.org.
Attacco hacker a Trenitalia, violati i dati anagrafici di alcuni passeggeri - Il Fatto Quotidianohttps://www.ilfattoquotidiano.it/2026/06/26/furto-dati-trenitalia-passeggeri-notizie/8430979/Public source from ilfattoquotidiano.it.
Related signals
Grouped by why the signal is relevant.
France's National Statistics Department (Insee) Hit by Cyberattack
France's national statistics department, Insee, announced on June 26, 2026, that it was the victim of a cyberattack that led to a breach of personal data from its staff directory. The incident, detected on June 19, 2026, affected approximately 12,800 current and former staff members and individuals from Insee-related civil service corps. The exposed data included identities and professional contact details, but no sensitive information such as passwords, bank details, or social security numbers.
Risk Strategies Discloses Data Breach Involving Personal and Medical Information
Risk Strategies (officially RSC Insurance Brokerage Inc.), an insurance brokerage and risk management firm, disclosed a data breach on June 26, 2026. The incident involved sensitive personal and medical information, with a report submitted to the Massachusetts Office of Consumer Affairs and Business Regulation on June 23, 2026. The exposed data included names, Social Security numbers, and for some individuals, medical information, medical records, and health, dental, or vision insurance details. At least 47 Massachusetts residents were affected.
NAIC Confirms Data Breach and Publication of Stolen Data by ShinyHunters
The National Association of Insurance Commissioners (NAIC) confirmed a cyberattack exploiting an Oracle PeopleSoft zero-day vulnerability, with the ShinyHunters group claiming to have stolen 3.1TB of data. NAIC confirmed on June 26, 2026, that the stolen data was published online.
Tejarat Bank Affected by Cyberattacks in Iran
Tejarat Bank was among three major Iranian banks affected by a wave of cyberattacks reported on June 23, 2026. The incident prompted a temporary nationwide suspension of card-based services to prevent unauthorized access. This follows an earlier wave of disruptions in mid-June.
Saderat Bank Affected by Cyberattacks in Iran
Saderat Bank was among three major Iranian banks affected by a wave of cyberattacks reported on June 23, 2026. The incident prompted a temporary nationwide suspension of card-based services to prevent unauthorized access. This follows an earlier wave of disruptions in mid-June.
Melli Bank Affected by Cyberattacks in Iran
Melli Bank was among three major Iranian banks affected by a wave of cyberattacks reported on June 23, 2026. The incident prompted a temporary nationwide suspension of card-based services to prevent unauthorized access. This follows an earlier wave of disruptions in mid-June.