Current:Home > MarketsNissan data breach exposed Social Security numbers of thousands of employees-LoTradeCoin
Nissan data breach exposed Social Security numbers of thousands of employees
View Date:2024-12-24 08:03:41
Nissan suffered a data breach last November in a ransomware attack that exposed the Social Security numbers of thousands of former and current employees, the Japanese automaker said Wednesday.
Nissan's U.S.-based subsidiary, Nissan North America, detailed the cyberattack in a May 15 letter to affected individuals. In the letter, Nissan North America said a bad actor attacked a company virtual private network and demanded payment. Nissan did not indicate whether it paid the ransom.
"[U]pon learning of the attack, Nissan promptly notified law enforcement and began taking immediate actions to investigate, contain and successfully terminate the threat," the car maker said in the letter, adding that "Nissan worked very closely with external cybersecurity professionals experienced in handling these types of complex security incidents."
Nissan told employees about the incident during a town hall meeting in December 2023, a month after the attack. The company also told staffers that it was launching an investigation and would notify employees privately if their personal information had been compromised. Nissan said it's providing free identity theft protection services to impacted individuals for two years.
Nissan North America also notified state officials across the U.S. of the attack, noting that data belonging to more than 53,000 current and former workers was compromised. But the company said its investigation found that affected individuals did not have their financial information exposed.
Nissan North America "has no indication that any information has been misused or was the attack's intended target," the automaker said in its letter.
Ransomware attacks, in which cybercriminals disable a target's computer systems or steal data and then demand payment to restore service, have become increasingly common. One cybersecurity expert said someone likely got a password or multi-factor authentication code from an existing Nissan employee, enabling the hacker to enter through the company's VPN.
"It is unfortunate that the breach ended up involving personal information, however Nissan has done the right thing by continuing to investigate the incident and reporting the update," Erich Kron, a cybersecurity awareness advocate at KnowBe4, told CBS MoneyWatch in an emailed statement. "In this case, targeting the VPN will often help bad actors avoid detection and bypass many of the organizational security controls that are in place."
- In:
- Nissan
- Data Breach
- Cyberattack
- Ransomware
Khristopher J. Brooks is a reporter for CBS MoneyWatch. He previously worked as a reporter for the Omaha World-Herald, Newsday and the Florida Times-Union. His reporting primarily focuses on the U.S. housing market, the business of sports and bankruptcy.
TwitterveryGood! (42)
Related
- Mississippi woman pleads guilty to stealing Social Security funds
- Hurry! Only six weeks left to consolidate student loan debt for a shot at forgiveness
- Prosecutor tells jury former Milwaukee official who requested fake ballots was no whistleblower
- 'Chester' gets limo ride out of animal shelter after nearly 600 days waiting for adoption
- Stop What You're Doing—Moo Deng Just Dropped Her First Single
- It's official: Caitlin Clark is the most popular player in college basketball this year
- Minnesota penalizes county jail for depriving inmate of food and water for more than 2 days
- Lukas Gage describes 6-month marriage to Chris Appleton as a 'manic episode'
- Trump is likely to name a loyalist as Pentagon chief after tumultuous first term
- Fate of Texas immigration law SB4 allowing for deportation now in 5th Circuit court's hands
Ranking
- Fire crews gain greater control over destructive Southern California wildfire
- Funeral home owners accused of storing nearly 200 decaying bodies to enter pleas
- Governor’s plan to boost mass transit aid passes Pennsylvania House, but faces long odds in Senate
- Atlanta man gets life in death of longtime friend over $35; victim's wife speaks out
- Tesla issues 6th Cybertruck recall this year, with over 2,400 vehicles affected
- Most popular dog breed rankings are released. Many fans are not happy.
- Alyssa Raghu denies hijacking friend's 'American Idol' audition, slams show's 'harmful' edit
- Landmark Peruvian Court Ruling Says the Marañón River Has Legal Rights To Exist, Flow and Be Free From Pollution
Recommendation
-
Are banks, post offices, UPS and FedEx open on Veterans Day? Here's what to know
-
Metropolitan Opera presents semi-staged `Turandot’ after stage malfunction
-
FTX chief executive blasts Sam Bankman-Fried for claiming fraud victims will not suffer
-
New York lawmakers expand fracking ban to include liquid carbon dioxide
-
Judge weighs the merits of a lawsuit alleging ‘Real Housewives’ creators abused a cast member
-
Hands off TikTok: Biden has shown us why government and social media shouldn't mix
-
'Real Housewives of Potomac' star Karen Huger involved in car crash after allegedly speeding
-
A Nebraska senator who name-checked a colleague while reading about rape is under investigation