Amtrak

Amtrak suffered a data breach in April 2026 affecting over 2.1 million accounts, with the hacking group ShinyHunters claiming responsibility and later publishing the stolen data.

Reported

May 1, 2026

Breach date

Apr 3, 2026

People affected

2.1M

Severity

high

What was exposed

Email addressesNamesPhysical addressesSupport tickets

What happened

According to Have I Been Pwned, the hacking group ShinyHunters claimed in April 2026 that they had breached Amtrak. The group typically compromises organizations' Salesforce instances before demanding ransom and, if unpaid, publicly releasing the data. ShinyHunters subsequently published the alleged stolen data.

What was exposed

The breach exposed over 2 million unique email addresses along with customer names, physical addresses, and customer support records.

Who is affected

Approximately 2.1 million Amtrak accounts were affected by the breach.

What to do now

Amtrak customers should monitor their accounts for suspicious activity and consider changing their passwords. Those affected should watch for phishing attempts and unsolicited contact using their exposed personal information.

Case monitoring

Get notified about the Amtrak case.

No attorney or law firm using Breached is currently investigating this case. You can submit your information as an interest expression to be notified if that changes. We never sell your details.

No attorney currently investigating

No attorney or law firm using Breached is currently investigating the Amtrak breach through Breached. You can submit information as an interest expression to be notified if that changes. Your details will not be routed to a law firm unless you give fresh consent after a case team is identified.