Eurail says hackers stole traveler information in a January breach and copies of the data are now being offered for sale on dark web forums and Telegram.
European rail pass provider Eurail B.V. has confirmed that data stolen in a recent cyberattack is now being offered for sale on the dark web and Telegram, even as the company continues to investigate the breach and cannot yet say who was behind it.
The breach, first detected in early January 2026, allowed unauthorised access to Eurail’s systems, exposing sensitive customer information stored in its internal databases. Those affected include customers who hold Eurail and Interrail travel passes, as well as participants in the EU’s DiscoverEU programme.
Eurail says it has seen samples of the stolen files being distributed on Telegram, a sign that threat actors are attempting to monetise the breach on hidden internet forums where illicit data is commonly sold. While the full scope of the breach, including how many records were taken and exactly which types of data are compromised remains under investigation, the company confirmed that names and travel companion details are likely involved, and there is a possibility that passport information was accessed.
Importantly, the company stressed that bank and credit card information was not stored in the affected systems and therefore was not taken in the attack. Eurail is working with external cybersecurity experts while advancing its internal inquiry.
Customers potentially affected by the breach have been notified under European data protection rules (GDPR), and authorities have been informed. Eurail has urged travellers to remain vigilant for phishing attempts, identity theft, and other scams that often follow the publication of personal data on illicit networks.
The case highlights how travel and ticketing platforms which collect extensive personal and travel information, are a growing target for cyber-criminals who exploit such data on the dark web, often long after the initial breach occurred.
Reports are sourced from official documents, law-enforcement updates, and credible investigations.
Discover additional reports, market trends, crime analysis and Harm Reduction articles on DarkDotWeb to stay informed about the latest dark web operations.
