Cyber Incident Victim: Aruba.it

On or around April 23, 2021, Italian web hosting provider Aruba.it experienced a data breach compromising customer billing and personal information. The breach exposed sensitive customer data, including names, surnames, tax codes, physical addresses, telephone numbers, and email addresses. Encrypted password hashes used for accessing customer portals were also accessed. Aruba.it confirmed the incident through an Italian-language notification sent to customers the following week, though the exact date of breach discovery remained unspecified in available reports. Customers reported dissatisfaction with the timing of notifications, suggesting the company delayed informing affected parties about the compromise.

Aruba.it defended its notification timeline amid customer complaints about communication delays. The company's breach disclosure message, obtained by The Daily Swig, acknowledged the exposure of multiple data categories but did not specify the number of affected accounts or the intrusion methodology. No evidence emerged in available sources regarding misuse of exposed data or system restoration efforts. The incident drew public attention primarily through customer reports and subsequent media coverage highlighting the gap between the breach date and customer notifications. Exposed tax codes and physical addresses raised concerns about potential identity theft risks, while encrypted password hashes reduced immediate credential compromise risks absent decryption capabilities.