Following a comprehensive data analysis completed on April 2, 2025, Hertz confirmed that the compromised information includes customers’ names, contact information, dates of birth, credit card details, and driver’s license information. A smaller subset of individuals may have had more sensitive information compromised, including Social Security numbers, government identification numbers, passport information, Medicare or Medicaid IDs associated with workers’ compensation claims, and injury-related information connected to vehicle accident claims. The company disclosed that unauthorized third parties acquired customer data after exploiting zero-day vulnerabilities in a vendor’s file transfer platform, potentially exposing the personal details of an undisclosed number of customers. Industry experts recommend that affected individuals consider placing fraud alerts or credit freezes on their credit files as additional precautionary measures to protect against potential identity theft or fraud resulting from the data breach. According to a recent notice of data incident, Hertz discovered on February 10, 2025, that customer data had been compromised through its vendor, Cleo Communications US, LLC. As part of its response plan, Hertz has partnered with Kroll, a risk consulting firm, to provide affected U.S. residents with two years of complimentary identity monitoring or dark web monitoring services. “We take the privacy and security of personal information seriously,” stated a Hertz representative. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis.
This Cyber News was published on cybersecuritynews.com. Publication date: Tue, 15 Apr 2025 09:40:12 +0000