Trenitalia: Trenitalia hacked, millions of customers' data breached: cell phones, emails, loyalty cards, and documents.

Trenitalia: Trenitalia hacked, millions of customers' data breached: cell phones, emails, loyalty cards, and documents.

Trenitalia Suffers Major Data Breach Affecting Millions of Customers

Italian rail operator Trenitalia confirmed a cyberattack in October 2025 that resulted in unauthorized access to sensitive customer data. In an email to affected users, the company disclosed that the breach exposed personal details, contact information (email addresses and phone numbers), ticket and loyalty card data, and identity document details though payment information, login credentials, and credit/debit card details remained secure.

Upon detecting the incident, Trenitalia immediately contained the breach, secured its systems, and reinforced cybersecurity measures to prevent future attacks. The company reported the incident to Italy’s Data Protection Authority, the National Agency for Cybersecurity, and filed a complaint with the Public Prosecutor’s Office in Rome. Individual notifications to customers were sent only after completing technical investigations, as required by law.

While Trenitalia emphasized that no financial or authentication data was compromised, it warned users to remain vigilant against potential fraudulent communications exploiting the breach. The incident has drawn political scrutiny, with opposition parties including Italia Viva, the Democratic Party, Avs, and the Five Star Movement demanding accountability from Transport Minister Matteo Salvini over the handling of the breach.

Source: https://www.unionesarda.it/en/italy/trenitalia-hacked-millions-of-customers39-data-breached-cell-phones-emails-loyalty-cards-and-documents-cxa13rlu

Trenitalia cybersecurity rating report: https://www.rankiteo.com/company/trenitalia

"id": "TRE1782851855",
"linkid": "trenitalia",
"type": "Breach",
"date": "6/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'Millions',
                        'industry': 'Transportation',
                        'location': 'Italy',
                        'name': 'Trenitalia',
                        'type': 'Rail Operator'}],
 'customer_advisories': 'Warning to remain vigilant against potential '
                        'fraudulent communications',
 'data_breach': {'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High (identity document details)',
                 'type_of_data_compromised': ['Personal details',
                                              'Contact information (email '
                                              'addresses and phone numbers)',
                                              'Ticket and loyalty card data',
                                              'Identity document details']},
 'date_detected': '2025-10',
 'description': 'Italian rail operator Trenitalia confirmed a cyberattack in '
                'October 2025 that resulted in unauthorized access to '
                'sensitive customer data, including personal details, contact '
                'information, ticket and loyalty card data, and identity '
                'document details. Payment information, login credentials, and '
                'credit/debit card details remained secure.',
 'impact': {'brand_reputation_impact': 'Political scrutiny and demands for '
                                       'accountability',
            'data_compromised': 'Personal details, contact information (email '
                                'addresses and phone numbers), ticket and '
                                'loyalty card data, identity document details',
            'identity_theft_risk': 'Potential fraudulent communications',
            'payment_information_risk': 'None (payment information secure)'},
 'investigation_status': 'Completed (technical investigations)',
 'references': [{'source': 'Trenitalia Customer Notification'}],
 'regulatory_compliance': {'regulatory_notifications': ['Italy’s Data '
                                                        'Protection Authority',
                                                        'National Agency for '
                                                        'Cybersecurity']},
 'response': {'communication_strategy': 'Individual notifications to customers '
                                        'after technical investigations',
              'containment_measures': 'Immediately contained the breach and '
                                      'secured systems',
              'incident_response_plan_activated': 'Yes',
              'law_enforcement_notified': 'Yes (Public Prosecutor’s Office in '
                                          'Rome)',
              'remediation_measures': 'Reinforced cybersecurity measures'},
 'stakeholder_advisories': 'Political parties (Italia Viva, Democratic Party, '
                           'Avs, Five Star Movement) demanding accountability '
                           'from Transport Minister Matteo Salvini',
 'title': 'Trenitalia Suffers Major Data Breach Affecting Millions of '
          'Customers',
 'type': 'Data Breach'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.