Skip to content

Incidents in sector:

Transport

Data breachOngoing

Leak at Interrail

A December 2025 cyberattack on Eurail B.V., operator of the Interrail and Eurail rail passes, exposed personal data of roughly 308,000 travellers โ€” including names, contact details, dates of birth and passport numbers โ€” which by 2026 was being sold on the dark web.

Victim
Interrail
Records
308.8K
Data breachContained

Leak at Eurail

In January 2026, Eurail B.V. โ€” operator of the Interrail and Eurail rail-pass schemes โ€” disclosed a data breach exposing personal and passport details of customers, with up to ~309,000 travellers reportedly affected and stolen data later offered for sale on the dark web.

Victim
Eurail
Data breachContained

Leak at Mondial Relay

In December 2025, French parcel-delivery firm Mondial Relay disclosed a cyberattack in which attackers accessed customer and shipment data โ€” names, emails, postal addresses, phone numbers and parcel-tracking details; a dark-web actor claimed roughly 25.7 million records.

Victim
Mondial Relay
Data breachContained

Leak at Chronopost

In December 2025, a 680 MB dataset on ~860,000 Chronopost customers โ€” names, emails and parcel details scraped from the La Poste Pickup relay-point network โ€” was published on BreachForums; the data covered shipments from spring 2025.

Victim
Chronopost
Records
860.0K
Data breachContained

Leak at Colis Privรฉ

In November 2025, French parcel-delivery firm Colis Privรฉ disclosed unauthorized access to part of its systems that exposed customer contact data โ€” names, postal and email addresses and phone numbers. A threat actor advertised a dataset reportedly running to tens of millions of rows; no passwords or banking data were affected.

Victim
Colis Privรฉ
Data breachContained

Leak at Digital Charging Solutions

In September 2025, EV-charging billing provider Digital Charging Solutions disclosed that a contracted third-party service provider had accessed customer records without authorization, exposing names and email addresses of an initial single-digit number of affected users.

Victim
Digital Charging Solutions
Supply chainContained

Leak at Air France

In August 2025, Air France-KLM disclosed that attackers accessed customer data โ€” names, contact details, Flying Blue loyalty numbers and status, and customer-service request subjects โ€” via a compromised third-party customer-service platform.

Victim
Air France
Data breachContained

Leak at Autosur

Autosur, a major French vehicle-inspection network, suffered a data breach exposing personal and vehicle records of millions of customers โ€” names, emails, postal addresses, phone numbers, license plates and vehicle details โ€” advertised for sale on a cybercrime forum.

Victim
Autosur
Data breachContained

Leak at Indigo

In April 2025, French parking operator Indigo disclosed a breach after attackers accessed its information systems and stole customer names, postal and email addresses, phone numbers and vehicle license plates; no banking data or passwords were affected.

Victim
Indigo
Supply chainResolved

Leak at Hertz

On 15 April 2025, car-rental company Hertz disclosed a data breach stemming from the late-2024 zero-day exploitation of Cleo's file-transfer software by the CL0P group, exposing customer names, contact details, dates of birth, driver's licences, credit-card and passport data.

Victim
Hertz
Data breachContained

Leak at Autosur & Diagnosur

In March 2025, French vehicle-inspection network Autosur (Diagnosur brand) disclosed a breach exposing data on roughly 10.7 million customers โ€” names, postal and email addresses, phone numbers, and detailed vehicle records including registration plates and VINs โ€” later offered for sale online.

Victim
Autosur & Diagnosur
Data breachContained

Leak at La Poste

In March 2025, French postal operator La Poste disclosed a breach of its 'ร‰lection du Timbre' platform exposing personal data of about 50,000 users โ€” names, year of birth, email, phone and postal addresses โ€” which was put up for sale online by an attacker.

Victim
La Poste
Records
50.0K
Data breachContained

Leak at Chronopost

Chronopost, the French express parcel carrier, confirmed in February 2025 that an intrusion detected on 29 January 2025 exposed personal data of around 210,000 customers, including names, postal addresses, phone numbers and delivery signatures.

Victim
Chronopost
Records
210.0K
RansomwareOngoing

Leak at Peugeot

In December 2024, the ransomware-as-a-service group Cicada 3301 claimed to have stolen 40 GB of data from Peugeot dealerships (mainly in Lot-et-Garonne, France), including customer ID documents, VINs and vehicle inventory data, threatening to publish it by 6 January 2025.

Victim
Peugeot
Data breachContained

Leak at Norauto

On 2 December 2024, French automotive retailer Norauto disclosed a cyberattack on its vehicle-rental service that exposed personal data of about 78,000 customers, including names, contact details and, in some cases, ID-document numbers; the dataset was put up for sale on BreachForums.

Victim
Norauto
Records
78.0K
RansomwareContained

Transnet 'Death Kitty' ransomware (South Africa, 2021)

A ransomware attack on South Africa's state-owned logistics firm Transnet shut down operations at Durban, Ngqura, Port Elizabeth and Cape Town container terminals, forcing the operator to declare force majeure. Durban โ€” 60% of Southern Africa's containerised trade โ€” reverted to paper-based clearance for cargo for a week.

Victim
Transnet SOC (state-owned freight & port operator)
Wiperunresolved

Iranian Railways 'MeteorExpress' wiper attack

A previously unseen wiper named Meteor crippled Iran's national railway network, wiping computers across stations, halting and delaying hundreds of trains, and defacing departure boards with a number for travelers to call: the office of Supreme Leader Khamenei.

Victim
Islamic Republic of Iran Railways (RAI) / Ministry of Roads and Urban Development
Data breachResolved

Air Europa payment-data breach

Spanish airline Air Europa exposed contact and full payment-card data โ€” including CVV codes โ€” on roughly 489,000 customers across 1.5 million records, and was fined โ‚ฌ600,000 by the AEPD for weak security and a 41-day notification delay.

Victim
Air Europa
Loss
$648.0K
Records
1.5M
Data breachResolved

Utair data breach (2019)

In August 2020, news broke of a data breach of Russian airline Utair that dated back to the previous year. The breach contained over 400k unique email addresses along with extensive personal information including names, physical addresses, dates of birth, passport numbers and loyalty programโ€ฆ

Victim
Utair
Records
401.4K
Data breachResolved

MalindoAir data breach (2019)

In early 2019, the Malaysian airline Malindo Air suffered a data breach that exposed tens of millions of customer records. Containing 4.3M unique email addresses, the breach also exposed extensive personal information including names, dates of birth, genders, physical addresses, phone numbers andโ€ฆ

Victim
MalindoAir
Records
4.3M