Current:Home > FinanceNissan data breach exposed Social Security numbers of thousands of employees -InvestPioneer
Nissan data breach exposed Social Security numbers of thousands of employees
View
Date:2025-04-18 09:21:22
Nissan suffered a data breach last November in a ransomware attack that exposed the Social Security numbers of thousands of former and current employees, the Japanese automaker said Wednesday.
Nissan's U.S.-based subsidiary, Nissan North America, detailed the cyberattack in a May 15 letter to affected individuals. In the letter, Nissan North America said a bad actor attacked a company virtual private network and demanded payment. Nissan did not indicate whether it paid the ransom.
"[U]pon learning of the attack, Nissan promptly notified law enforcement and began taking immediate actions to investigate, contain and successfully terminate the threat," the car maker said in the letter, adding that "Nissan worked very closely with external cybersecurity professionals experienced in handling these types of complex security incidents."
Nissan told employees about the incident during a town hall meeting in December 2023, a month after the attack. The company also told staffers that it was launching an investigation and would notify employees privately if their personal information had been compromised. Nissan said it's providing free identity theft protection services to impacted individuals for two years.
Nissan North America also notified state officials across the U.S. of the attack, noting that data belonging to more than 53,000 current and former workers was compromised. But the company said its investigation found that affected individuals did not have their financial information exposed.
Nissan North America "has no indication that any information has been misused or was the attack's intended target," the automaker said in its letter.
Ransomware attacks, in which cybercriminals disable a target's computer systems or steal data and then demand payment to restore service, have become increasingly common. One cybersecurity expert said someone likely got a password or multi-factor authentication code from an existing Nissan employee, enabling the hacker to enter through the company's VPN.
"It is unfortunate that the breach ended up involving personal information, however Nissan has done the right thing by continuing to investigate the incident and reporting the update," Erich Kron, a cybersecurity awareness advocate at KnowBe4, told CBS MoneyWatch in an emailed statement. "In this case, targeting the VPN will often help bad actors avoid detection and bypass many of the organizational security controls that are in place."
- In:
- Nissan
- Data Breach
- Cyberattack
- Ransomware
Khristopher J. Brooks is a reporter for CBS MoneyWatch. He previously worked as a reporter for the Omaha World-Herald, Newsday and the Florida Times-Union. His reporting primarily focuses on the U.S. housing market, the business of sports and bankruptcy.
TwitterveryGood! (798)
Related
- Charges tied to China weigh on GM in Q4, but profit and revenue top expectations
- Trump says he believes Nikki Haley is going to be on our team in some form
- Go All Out This Memorial Day with These Kate Spade Outlet Deals – $36 Wristlets, $65 Crossbodies & More
- Migrant crossings at U.S.-Mexico border plunge 54% from record highs, internal figures show
- Nearly half of US teens are online ‘constantly,’ Pew report finds
- Judge in hush money trial rejects Trump request to sanction prosecutors
- With Paris Olympics looming, new coach Emma Hayes brings the swagger back to USWNT
- The Boucle Furniture Trend Is Taking Over the Internet: Here's How to Style It in Your Home
- Apple iOS 18.2: What to know about top features, including Genmoji, AI updates
- Fleet Week NYC 2024: See massive warships sailing around New York to honor service members
Ranking
- NHL in ASL returns, delivering American Sign Language analysis for Deaf community at Winter Classic
- Arizona man convicted of murder in starvation death of his 6-year-son
- A woman took her dog to a shelter to be euthanized. A year later, the dog is up for adoption again.
- U.K. Prime Minister Rishi Sunak sets July 4 election date as his Conservative party faces cratering support
- Senate begins final push to expand Social Security benefits for millions of people
- American ex-fighter pilot accused of illegally training Chinese aviators can be extradited to U.S., Australian judge says
- 'Atlas' review: Jennifer Lopez befriends an AI in her scrappy new Netflix space movie
- Colorado governor to sign bills regulating funeral homes after discovery of 190 rotting bodies
Recommendation
Have Dry, Sensitive Skin? You Need To Add These Gentle Skincare Products to Your Routine
See memorials in Uvalde and across Texas that honor victims of Robb Elementary shooting
Manatee County sheriff’s deputy injured in shooting
UCLA police arrest young man for alleged felony assault in attack on pro-Palestinian encampment
How to watch the 'Blue Bloods' Season 14 finale: Final episode premiere date, cast
Oilers' Connor McDavid beats Stars in double overtime after being robbed in first OT
The Daily Money: Can I afford to insure my home?
The Daily Money: Can I afford to insure my home?