300,000 People Impacted By Eurail Data Breach

European journey firm Eurail is notifying over 300,000 people who their private info was stolen in a December 2025 information breach.

The incident was initially disclosed in January, when the corporate warned that clients who had been issued a Eurail move may need been affected.

The information was stolen after hackers breached the Netherlands-based firm’s community and stole recordsdata containing fundamental id and speak to info.

In February, a hacker boasted on a floor internet cybercrime website about stealing roughly 1.3 terabytes of information from Eurail’s AWS S3, Zendesk, and GitLab situations, together with supply code, help tickets, and database backups.

The hacker claimed they stole the non-public info of hundreds of thousands of Eurail/Interrail clients and that negotiations with the journey firm had failed.

In early March, Eurail confirmed that the hacker had been providing the stolen information on the darkish internet and that they revealed a pattern dataset on their Telegram channel. It additionally mentioned it doesn’t retailer financial institution or bank card info, nor visible copies of passports.

Advertisement. Scroll to proceed studying.

“Customers whose personal data was included in the sample dataset will be informed directly where contact details are available to us,” the corporate mentioned.

Last week, Eurail filed breach notifications with the Attorney General’s Offices in a number of US states, revealing that names and passport numbers had been stolen within the assault.

The firm told the Oregon Attorney General’s Office that the info breach impacts solely 308,777 folks. Eurail is sending written notifications to the possibly impacted people.