{"id":7021164,"date":"2025-09-05T18:15:15","date_gmt":"2025-09-05T16:15:15","guid":{"rendered":"https:\/\/www.visamundi.co\/?p=7021164"},"modified":"2025-09-05T18:15:27","modified_gmt":"2025-09-05T16:15:27","slug":"over-90000-identity-documents-stolen-from-italian-hotels","status":"publish","type":"post","link":"https:\/\/www.visamundi.co\/en\/blog\/plus-de-90-000-documents-didentite-voles-dans-des-hotels-italiens\/","title":{"rendered":"Over 90,000 identity documents stolen from Italian hotels"},"content":{"rendered":"<p>Cybercrime has become a scourge with increasingly complex and expert methods, affecting all business sectors, including travel. From targeted attacks in Italy to data collection decrees in Spain, to multiple incidents at airline giants, it's clear that travelers need to take the protection and use of their personal information very seriously.<\/p>\n\n\n\n<!--more-->\n\n\n\n<h2 class=\"wp-block-heading\">Hackers target Italian hotels<\/h2>\n\n\n\n<p>L'<strong>Agency for Digital Italy (AgID)<\/strong> and the postal police recently dismantled the \"Mydocs\" hacker gang, which specialized in reselling personal data on the dark web. These cybercriminals targeted at least four Italian hotels, managing to steal <strong>around 90,000 host identities<\/strong> who had provided their documents at the time of registration.<\/p>\n\n\n\n<p>The target structures, all four-star establishments, include the hotel <strong>Ca' dei Conti<\/strong> in Venice (38,000 images stolen), the <strong>Casa Dorita<\/strong> in Milano Marittima (2,300 documents), the <strong>Regina Isabella<\/strong> in Ischia (30,000), and the<strong>Hotel Continental <\/strong>Trieste (17,000).<\/p>\n\n\n\n<p>The stolen data includes photographs contained in identity cards and passports, as well as other documents such as driving licenses, which are sold for between 800 and 10,000 euros. This information is frequently used to commit <strong>identity theft<\/strong>These documents enable fraudsters to open bank accounts, apply for loans and collect the associated sums. A peak in the number of incidents was observed between August 9 and 11, with documents offered for sale on the dark side of the web.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">A global threat to the travel industry<\/h2>\n\n\n\n<p>These attacks in Italy are not isolated cases; cybercrime is on the rise everywhere. The travel sector is particularly vulnerable to cyber attacks, and has been the scene of a number of major incidents:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>The Australian airline <a href=\"https:\/\/ch.zonebourse.com\/actualite-bourse\/qantas-reduit-de-15-les-bonus-des-dirigeants-apres-une-cyberattaque-ce7d59d8de8ef524\"><strong>Qantas<\/strong> announced that it was investigating a <strong>major\" cyber attack<\/strong><\/a> after hackers broke into a system housing sensitive data.<\/li>\n\n\n\n<li>In June, <a href=\"https:\/\/www.capital.fr\/conso\/cyberattaque-chez-center-parcs-les-donnees-de-20-000-clients-dans-la-nature-1515085\"><strong>Center Parcs<\/strong> warned that data from around <strong>20,000 customers<\/strong> had been compromised<\/a>.<\/li>\n\n\n\n<li>The consolidator <strong>Aerticket<\/strong> was also confronted with a major incident.<\/li>\n\n\n\n<li><strong>British Airways<\/strong> suffered a massive data leak in 2018, affecting <strong>over 400,000 customers<\/strong> and a fine of <strong>20 million pounds sterling<\/strong> in 2020. The incident was not detected until more than two months later.<\/li>\n\n\n\n<li>May 2020, <a href=\"https:\/\/www.lemonde.fr\/pixels\/article\/2020\/05\/19\/easyjet-victime-d-une-cyberattaque-les-donnees-de-millions-de-clients-derobees_6040142_4408996.html\"><strong>EasyJet<\/strong> was the victim of a cyberattack that affected <strong>9 million customers<\/strong><\/a>.<\/li>\n\n\n\n<li><strong>WestJet<\/strong> has confirmed that personal and travel-related data was illegally obtained during a cybersecurity incident in June, although no credit or debit card numbers or passwords were compromised. The company has cooperated with the authorities and reinforced its security measures.<\/li>\n\n\n\n<li><a href=\"https:\/\/www.tourmag.com\/Cyberattaque-Voyageurs-du-Monde-les-donnees-de-certains-passeports-derobees-et-publiees_a118880.html\">The Group <strong>Voyageurs du Monde<\/strong> refused, on principle, to pay a ransom demanded in 2023<\/a>.<\/li>\n<\/ul>\n\n\n\n<p>Artificial intelligence (AI) is also under fire, as it increases the range of possibilities for hackers. Visit <strong>risk of phishing attacks has exploded with AI<\/strong>fraudulent e-mails are better written and quickly translated. Booking.com, which uses AI to identify attacks, was able to block 60 million e-mails with fraudulent links in just one month. In addition <strong>mirror sites<\/strong> fraudulent museum and theme park websites are created by cybercriminals to sell imaginary tickets.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Spain and the \"Big Brother of Tourism\": Controversial data collection<\/h3>\n\n\n\n<p>Alongside the risks of theft, Spain has introduced a new challenge for the protection of travelers' data. Since last December, a <a href=\"https:\/\/www.pwc.es\/es\/newlaw-pulse\/legaltech\/nuevas-obligaciones-sector-turismo.html#:~:text=Obligaciones%20del%20RD%20933%2F2021,-Recogida%20de%20datos&amp;text=Las%20personas%20mayores%20de%2014,de%20edad%20que%20los%20acompa%C3%B1en.\">royal decree (933\/2021)<\/a> obliges tourist accommodations, travel agencies and car rental companies to collect and transmit to the authorities <strong>massive amounts of data<\/strong> on their foreign customers.<\/p>\n\n\n\n<p>What travellers need to know:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Hotels, such as the Hotel Moderno in Madrid, now ask foreign guests to fill in <strong>manually a large amount of information<\/strong> in addition to the usual data.<\/li>\n\n\n\n<li>It's not just the name or ID number, it's also the <strong>telephone number, place of birth, relationship to other travellers, payment details, even travel habits over the last three years<\/strong>.<\/li>\n\n\n\n<li>A minimum of 13 data records is required, and up to <strong>42 for accommodation and over 60 for car rentals<\/strong>.<\/li>\n\n\n\n<li>This data must be sent <strong>every evening at the Spanish Ministry of the Interior<\/strong> via a dedicated digital platform.<\/li>\n\n\n\n<li>Professionals who fail to comply risk fines of up to <strong>30,000 euros<\/strong> for plants and <strong>25,000 euros<\/strong> for tour operators and hoteliers.<\/li>\n\n\n\n<li>Travellers who refuse to provide this information <strong>may be refused entry to a hotel or a car reservation<\/strong>.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-pullquote\"><blockquote><p>Spanish tourism professionals, such as Ram\u00f3n Estalella of the Spanish Confederation of Hotels and Tourist Accommodation (CEHAT), are denouncing this measure as a \"step in the right direction\". <strong>\"completely illegal and disproportionate\".<\/strong> and call the decree <strong>\"Big Brother<\/strong>.<\/p><\/blockquote><\/figure>\n\n\n\n<p>ECTAA (European Association of Travel Agents and Tour Operators) warns against the scope of the data requested, calling it <strong>excessive and potentially contrary to European data protection rules (RGPD)<\/strong>CEHAT believes that this massive collection exposes visitors to potential risks of misuse of their information in the event of cyber-attacks. CEHAT has also launched a <strong>legal action against the Spanish State<\/strong>.<\/p>\n\n\n\n<p>The Spanish government, through the Secretary of State for Security, Rafael Perez Ruiz, is defending the decree, claiming that it is necessary for the <strong>fighting terrorism and organized crime<\/strong>citing the arrest of 18,000 people in a voluntary trial.<\/p>\n\n\n\n<p>In the face of these omnipresent threats, whether data theft or excessive data collection, travelers need to be extra vigilant. The Agency for Digital Italy (AgID) stresses the importance of <strong>the fundamental role of citizens in protecting their identity<\/strong>.<\/p>","protected":false},"excerpt":{"rendered":"<p>Cybercrime has become a scourge with increasingly complex and expert methods, affecting all business sectors, including travel. From targeted attacks in Italy, to data collection decrees in Spain, to multiple incidents at airline giants, it's clear that cybercriminals ... <a title=\"Over 90,000 identity documents stolen from Italian hotels\" class=\"read-more\" href=\"https:\/\/www.visamundi.co\/en\/blog\/plus-de-90-000-documents-didentite-voles-dans-des-hotels-italiens\/\" aria-label=\"Read more about Over 90,000 identity documents stolen from Italian hotels\">Read the article<\/a><\/p>","protected":false},"author":1,"featured_media":7021165,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_sitemap_exclude":false,"_sitemap_priority":"","_sitemap_frequency":"","footnotes":""},"categories":[25],"tags":[],"class_list":["post-7021164","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-europe"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/posts\/7021164","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/comments?post=7021164"}],"version-history":[{"count":1,"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/posts\/7021164\/revisions"}],"predecessor-version":[{"id":7021166,"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/posts\/7021164\/revisions\/7021166"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/media\/7021165"}],"wp:attachment":[{"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/media?parent=7021164"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/categories?post=7021164"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.visamundi.co\/en\/wp-json\/wp\/v2\/tags?post=7021164"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}