Overview

• AGID confirmed that hackers infiltrated the booking systems of at least ten Italian hotels and have opened an official investigation.
• A threat actor using the alias mydocs is advertising about 100,000 scanned passports and ID cards on dark web forums.
• Investigators warn the total may include years of records from small properties and that more hotels could emerge as affected.
• Officials cautioned the stolen data can be used to create false documents, open fraudulent bank accounts, and execute social engineering scams.
• Guests are urged to verify any communications claiming to be from Italian hotels and to stay vigilant against phishing attempts.