Trenitalia Confirms Cyber Attack Compromised Customer Data on June 26

Italy's state railway operator Trenitalia confirmed on June 26, 2026 that a cyber attack compromised customer data systems.

The breach at Italy's largest passenger rail operator raises immediate concerns about data protection compliance under EU regulations and operational security for a network carrying approximately 600 million passengers annually. Cyber attacks on rail operators can expose booking records, payment card data, frequent traveller profiles and operational systems if not properly segmented. The incident comes as European rail operators face increasing digital threats following similar attacks on Deutsche Bahn and SNCF networks in recent years.

Trenitalia has not disclosed the volume of customer records affected, the type of data accessed, or whether payment systems were compromised. The operator has not specified whether the attack targeted online booking platforms, mobile applications, or back-office customer relationship management systems. No information has been released regarding whether train operations or safety-critical systems were at risk.

The attack occurred during peak summer travel season when Trenitalia operates its highest service frequencies on intercity and high-speed routes. Italian data protection authority Garante per la protezione dei dati personali has jurisdiction to investigate breaches affecting Italian residents under GDPR framework, which mandates breach notification within 72 hours of discovery and requires operators to document technical and organizational security measures.