- Hackers selling data stolen from January 2026 Eurail breach
- The stolen information includes names, travel companion details and possibly passport numbers.
- Banking details are secure, but leaked records are now offered on the dark web/Telegram; The risk of phishing remains high.
Hackers have begun selling data they stole from Eurail in a recent cyberattack, the company said.
Eurail is a Dutch company that sells travel passes for European railways. Around January 10, 2026, it confirmed that cybercriminals accessed its servers and extracted sensitive customer information to a third-party environment.
Now, the company said it saw samples of the stolen files being offered on Telegram.
Escalating the threat
“We have become aware that the data was offered for sale on the dark web and a sample data set was posted on Telegram,” the company said in an update posted on its website. “We are currently investigating which specific data records or how many of the affected customers this refers to.”
Although the investigation into the nature and scope of the attack is still ongoing, the company said the data captured likely includes people’s names and information about fellow travelers.
He also said there is a possibility that passport information (numbers, country of issue, expiration date) may have been obtained, but stressed that bank and credit card details remain secure. Additionally, the company does not store visual copies of people’s passports.
We don’t know who was behind the attack or how many customers are affected. Eurail serves millions of customers each year and in 2023 alone sold more than 1.2 million passes worldwide.
Eurail said it has notified the relevant EU authorities, as required by GDPR requirements, and is currently notifying other data protection regulators outside the EU.
In the meantime, customers are advised to remain vigilant. You are urged to be very careful with incoming emails, especially those claiming to come from Eurail. Cybercriminals can use the stolen data to create very convincing phishing emails, through which they can steal corporate login credentials or even initiate fraudulent bank transfers.
Through beepcomputer
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
