Nissan North America data breach impacts over 53,000 employees

Nissan North America suffered a data breach last year when a threat actor targeted the company's external VPN and shut down systems to receive a ransom.
The car maker discovered the breach in early November 2023 and discovered recently that the incident exposed personal data belonging to more than 53,000 current and former employees.
Nissan disclosed that the threat actor targeted its external VPN and then shut down certain company systems before asking for a ransom.
The company notes that none of its systems were encrypted during the attack.
Working with external cybersecurity experts, the company was able to assess the situation, contain the incident, and terminate the threat.
The subsequent investigation revealed that the hacker had accessed some files on local and network shares that contained mostly business information.
In a data breach notification to the Office of the Maine Attorney General, the company states that the exposed details included a personal identifier and social security numbers, and that financial details were not present in the files accessed by the threat actor.
Nissan notes that it is not aware of the exposed data having been misused.
To mitigate the risk of this data exposure Nissan enclosed instructions for letter recipients on how they can enroll in a free-of-charge 24-month credit monitoring and identity theft protection service through Experian.
Nissan has been the target of several security incidents over the past few years, which affected various divisions of the Japanese car manufacturer.
In early December 2023, Nissan Oceania announced an investigation into a cyberattack and potential data breach.
In March 2024, Nissan confirmed thaat Akira ransomware had stolen data belonging to 100,000 of its customers.
In January 2023, Nissan North America suffered an indirect breach when a third-party technology service provider exposed the data of 17,988 customers due to a poorly configured database.
Nissan North America left an exposed Git server repository online using default credentials, exposing 20 GB of source code for internal apps and tools.
Nissan reacted by pulling the repository offline only when it was notified by a researcher who spotted users sharing the source code via torrents.
DocGo discloses cyberattack after hackers steal patient health data.
Dropbox says hackers stole customer data, auth secrets from eSignature service.
Philadelphia Inquirer: Data of over 25,000 people stolen in 2023 breach.
UnitedHealth confirms it paid ransomware gang to stop data leak.


This Cyber News was published on www.bleepingcomputer.com. Publication date: Wed, 15 May 2024 19:35:06 +0000


Cyber News related to Nissan North America data breach impacts over 53,000 employees

Nissan North America data breach impacts over 53,000 employees - Nissan North America suffered a data breach last year when a threat actor targeted the company's external VPN and shut down systems to receive a ransom. The car maker discovered the breach in early November 2023 and discovered recently that the ...
5 months ago Bleepingcomputer.com
How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
1 month ago Aws.amazon.com
Tech Security Year in Review - In this Tech Security Year in Review for 2023, let's look into the top data breaches of the past year. Each factor contributes to the growing threatscape, demanding a proactive and adaptable cybersecurity approach to safeguard your organization ...
10 months ago Securityboulevard.com
Nissan Is Investigating Cyberattack; Personal Data Breach - Nissan, a global carmaker with headquarters in Japan, is investigating a cyber incident that may have compromised company systems and if personal data was accessed. The company possibly experienced a cyber attack that had a significant impact on its ...
11 months ago Cybersecuritynews.com
18,000 Nissan Customers Affected by Data Breach at Third-Party Software Developer - Nissan recently announced that 18,000 of its U.S. customers have been affected by a data breach involving a third-party software developer. The breach was initially discovered by Nissan in January and affected customers who purchased or leased ...
1 year ago Securityweek.com
Data Breach Response: A Step-by-Step Guide - In today's interconnected world, organizations must be prepared to respond swiftly and effectively in the face of a data breach. To navigate these challenges, a well-defined and comprehensive data breach response plan is essential. Let's explore the ...
9 months ago Securityzap.com
Bank of America warns customers of data breach after vendor hack - Bank of America is warning customers of a data breach exposing their personal information after one of its service providers was hacked last year. Customer personally identifiable information exposed in the security breach includes the affected ...
8 months ago Bleepingcomputer.com
Nissan Australia cyberattack claimed by Akira ransomware gang - Today, the Akira ransomware gang claimed that it breached the network of Nissan Australia, the Australian division of Japanese car maker Nissan. In a new entry added to the operation's date leak blog on December 22, Akira says that its operators ...
10 months ago Bleepingcomputer.com
Nissan Restoring Systems After Cyberattack - Japanese car manufacturer Nissan has disclosed a cyberattack impacting the internal systems at Nissan Oceania. A regional division of the multinational carmaker, Nissan Oceania is responsible for the company's operations in Australia and New Zealand. ...
11 months ago Securityweek.com
Nissan is investigating cyberattack and potential data breach - Japanese car maker Nissan is investigating a cyberattack that targeted its systems in Australia and New Zealand, which may have let hackers access personal information. Details of the attack have not been published but the company informed customers ...
11 months ago Bleepingcomputer.com
First American December data breach impacts 44,000 people - First American Financial Corporation, the second-largest title insurance company in the United States, revealed Tuesday that a December cyberattack led to a breach impacting 44,000 individuals. Founded in 1889, it provides financial and settlement ...
5 months ago Bleepingcomputer.com
Ransomware Group Claims 100 Gb of Data Stolen From Nissan - A known ransomware group has taken credit for the recent cyberattack targeting Nissan and claims to have stolen 100 Gb of information from the Japanese car manufacturer. The carmaker revealed in early December that internal systems belonging to ...
10 months ago Securityweek.com
Cooler Master hit by data breach exposing customer information - Computer hardware manufacturer Cooler Master has suffered a data breach after a threat actor breached the company's website and claimed to steal the Fanzone member information of 500,000 customers. Cooler Master is a hardware manufacturer based in ...
5 months ago Bleepingcomputer.com
Nissan Oceania Breached; 100K People Affected Down Under - A possible ransomware attack at Nissan has exposed personal information belonging to around 100,000 people in Australia and New Zealand. The Japanese vehicle manufacturer has a troubled history with cyberattacks, dating back well over a decade. It ...
7 months ago Darkreading.com
North Korea's state hackers stole $3 billion in crypto since 2017 - North Korean-backed state hackers have stolen an estimated $3 billion in a long string of hacks targeting the cryptocurrency industry over the last six years since January 2017. Kimsuky, Lazarus Group, Andariel, and other North Korean hacking groups ...
11 months ago Bleepingcomputer.com
Bank of America's Security Response: Mitigating Risks After Vendor Data Breach - In a concerning development, Bank of America has informed its customers about a possible data breach stemming from a security incident involving one of its vendors. This incident raises questions about the security of sensitive customer information, ...
8 months ago Cysecurity.news
Moonstone Sleet emerges as new North Korean threat actor with new bag of tricks - Microsoft has identified a new North Korean threat actor, now tracked as Moonstone Sleet, that uses both a combination of many tried-and-true techniques used by other North Korean threat actors and unique attack methodologies to target companies for ...
5 months ago Microsoft.com
Unraveling the Aftermath of Verizon's Insider Data Breach Impacting 63,000 Employees - In the fast-paced world of digital connectivity, data breaches have become an unfortunate reality that businesses must constantly guard against. Recently, telecommunications giant Verizon found itself in the throes of a security crisis as it grappled ...
8 months ago Cysecurity.news
AvidXchange Notifies Consumers of Data Breach Following Period of Unauthorized Access - On October 13, 2023, AvidXchange, Inc. filed a notice of data breach with the Attorney General of Massachusetts after discovering that a recent cybersecurity event resulted in an unauthorized party being able to access the company's IT network. In ...
11 months ago Jdsupra.com
Verizon insider data breach hits over 63,000 employees - Verizon Communications is warning that an insider data breach impacts almost half its workforce, exposing sensitive employee information. Verizon is an American telecommunications and mass media company providing cable TV, telecommunications, and ...
9 months ago Bleepingcomputer.com
Goto Customers Backup Data Breach: Protect Your Business and Handle Data Breach Risks - A data breach at Goto customers exposed their backup data to malicious actors, leading to a data breach that impacted those customers. Businesses need to be aware of the risks associated with data breaches and how to protect their organisations from ...
1 year ago Securityaffairs.com
Fujitsu found malware on IT systems, confirms data breach - Japanese tech giant Fujitsu discovered that several of its systems were infected by malware and warns that the hackers stole customer data. Fujitsu is the world's sixth largest IT services provider, employing 124,000 people and having an annual ...
7 months ago Bleepingcomputer.com
Nissan Oceania to alert 100k people affected by cyberattack The Register - Over the next few weeks, Nissan Oceania will make contact with around 100,000 people in Australia and New Zealand whose data was pilfered in a December 2023 attack on its systems - perhaps by the Akira ransomware gang. The cyberbaddies stole some ...
7 months ago Go.theregister.com
Nissan Oceania to alert 100K people affected by cyberattack The Register - Over the next few weeks, Nissan Oceania will make contact with around 100,000 people in Australia and New Zealand whose data was pilfered in a December 2023 attack on its systems - perhaps by the Akira ransomware gang. The cyberbaddies stole some ...
7 months ago Go.theregister.com
Equilend warns employees their data was stolen by ransomware gang - New York-based securities lending platform EquiLend Holdings confirmed in data breach notification letters sent to employees that their data was stolen in a January ransomware attack. The financial technology company told BleepingComputer on January ...
7 months ago Bleepingcomputer.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)