A January breach of Eurail’s customer database has escalated into a large-scale identity theft crisis after attackers began offering millions of travelers’ sensitive records for sale on criminal marketplaces and publishing a sample on Telegram. The compromised information—names, passport numbers, ID numbers, IBANs, health data and contact details—puts DiscoverEU participants at particular risk and has prompted regulatory notifications and customer mitigation guidance. #Eurail #DiscoverEU
Keypoints
- Attackers listed millions of European rail travelers’ records for sale on criminal marketplaces and published a sample on Telegram.
- Compromised data includes full names, passport numbers, ID numbers, IBANs, health information, emails and phone numbers.
- DiscoverEU participants may have had passport photocopies and face higher exposure to long-term identity fraud.
- Eurail reported the incident to data protection authorities and hired external cybersecurity specialists to monitor dark web activity.
- Customers are advised to change passwords, monitor bank accounts, avoid sharing data with unsolicited contacts, and contact Eurail’s privacy team for guidance.
Read More: https://thecyberexpress.com/eurail-breach-data-on-dark-web-for-sale/