Automaker Hyundai recently disclosed a breach that affected an unspecified number of Italian and French car owners, as well as individuals who booked test drives.
The company notified affected individuals by email.Some of them posted screenshots of their messages on Twitter Earlier this week.
“We regret to inform you that we have recently learned that an unauthorized third party has accessed some information contained in our customer database.” Information security journalist). “Upon receiving reports of the incident, we immediately launched an investigation and took all steps to contain it.”
The company added that it also blocked the affected servers and removed them from its network.
Data affected by the compromise included contact information (email, address, phone number, etc.) and vehicle data (chassis number, etc.).
For more information on breaches affecting auto companies, see the following articles:U.S. auto giant General Motors hit by cyberattack exposing personal information of car owners
Brad Freeman, director of technology at SenseOn, commented on the leak, saying the leaked data was limited to test drive bookings and serial numbers of some vehicles, so it’s possible the leak came from a non-core website. said to suggest
“The number of websites and services managed by a complex international company like Hyundai is staggering, and one of these sites may not be subject to the company’s standard security controls,” said Freeman. added Mr.
Days after the data breach was revealed, various security researchers clearly on Twitter A new flaw in Hyundai’s mobile app has exposed various car models since 2012 to a remote attack that could unlock and start the vehicle.
Approov CEO Ted Miracco said: “These trends make all automotive companies vulnerable to cyberattacks, especially from mobile apps and devices.”
Case in point, UK car dealer Arnold Clark notified customers in February that their data had been stolen in a breach that occurred in December 2022.
Editorial image credit: Valeriya Zankovych / Shutterstock.com
