Miniatur Wunderland Confirms Credit Card data Breach Affecting Thousands
Hamburg, Germany – November 12, 2025 – Miniatur Wunderland, the world’s largest model railway attraction, has disclosed a cybersecurity incident resulting in the compromise of customer credit card data. Founder Frederik Braun revealed that malicious software infiltrated the company’s systems, potentially exposing payment information during transactions processed as June 2025.
The breach did not involve the storage of credit card details on Miniatur wunderland’s servers; instead, the data was intercepted while being transmitted to external payment processors. However, approximately 30,000 to 35,000 customers have been notified via email and advised to monitor their accounts for any unauthorized activity. The incident came to light following a notification from a credit card company.
Miniatur Wunderland instantly engaged IT forensics specialists to contain the threat and has since reinstalled the affected server.The Federal Criminal Police Office and the relevant data protection authorities have also been informed. As of today,November 12,2025,the full extent of the damage remains unclear,with no reports of fraudulent activity yet received from affected customers.
This incident underscores the growing threat of cyberattacks targeting businesses of all sizes,even those not directly handling sensitive data storage. Miniatur Wunderland,a popular tourist destination attracting millions annually,relies on secure payment processing to facilitate ticket sales and merchandise purchases. The attraction’s swift response,including proactive customer notification and collaboration with law enforcement,aims to mitigate potential harm and restore confidence in its payment systems. Further updates will be provided as the examination progresses.
