Tens of thousands of tourists’ identity documents were stolen electronically from hotel servers in Italy and put up for sale on the dark web, according to the Italian Digital Authority.

A statement seen by Agence France-Presse, said the authority had been monitoring “an illegal sale of identity documents believed to have been stolen from hotels operating in Italy.” The stolen files included high-resolution copies of passports, ID cards, and other registration documents used by guests.

The total number of compromised documents is estimated at around 100,000. The perpetrator, known as “MyDox,” claimed to have obtained the data through unauthorized access to information systems between June and August 2025.

Authorities confirmed that ten hotels in Italy were affected, though they did not rule out further cases emerging in the coming days.

The agency warned that victims could face serious financial and legal consequences, as the stolen data could be misused for fraud, including forging documents, opening bank accounts, or impersonating digital identities.

The Italian Digital Authority continues to investigate the breach and has urged affected individuals to take precautions to protect their personal information.