A significant automaker simply skilled a knowledge breach that would have an effect on tens of thousands and thousands of shoppers.
Stellantis, the carmaker behind Jeep, Fiat, Chrysler, and Dodge, stated on Sunday in a press launch that it “lately” uncovered “unauthorized entry” to a third-party service platform a part of its customer support operations in North America.
“We’re additionally notifying the suitable authorities and instantly informing affected prospects,” Stellantis wrote within the press launch. The discharge notes that whereas contact info was uncovered, monetary info was not. The assertion didn’t specify the kinds of contact info affected.
Associated: Jaguar Land Rover Shuts Down Production After Cyberattack, Costing the Company More than a Billion So Far
Stellantis, which was created in 2021 following the merger of Fiat Chrysler Vehicles and PSA Group, is the world’s fifth-largest automaker by gross sales quantity.
The automotive firm didn’t reveal the variety of individuals impacted by the breach. Nonetheless, the ShinyHunters cybercriminal group claimed duty for the assault and instructed tech website BleepingComputer on Monday that it had stolen greater than 18 million Salesforce information from Stellantis, together with names and make contact with info.
A 2025 Stellantis Jeep Wrangler, a 2025 Stellantis Ram 1500, and a 2025 Stellantis Jeep Grand Wagoneer. Photographer: Kent Nishimura/Bloomberg through Getty Photographs
ShinyHunters has been going after high-profile Salesforce prospects for the reason that starting of the yr through the use of voice phishing assaults to steal knowledge. Google confirmed in June that ShinyHunters was accountable for a knowledge breach affecting one among its personal Salesforce databases that contained details about small and medium-sized companies.
Louis Vuitton and insurance coverage firm Allianz Life additionally skilled knowledge breaches in July that had been linked to the ShinyHunters group.
Based on the National CIO Review, ShinyHunters employs a constant assault technique: Somebody calls an organization worker pretending to be IT help and has them obtain an app, which grants the attacker entry to buyer knowledge. The attacker then steals info like names, emails, and cellphone numbers, and calls for ransom funds from the corporate to cease the publication of the info.
ShinyHunters instructed BleepingComputer that it had stolen over 1.5 billion Salesforce information from 760 firms in whole up to now.
A significant automaker simply skilled a knowledge breach that would have an effect on tens of thousands and thousands of shoppers.
Stellantis, the carmaker behind Jeep, Fiat, Chrysler, and Dodge, stated on Sunday in a press launch that it “lately” uncovered “unauthorized entry” to a third-party service platform a part of its customer support operations in North America.
“We’re additionally notifying the suitable authorities and instantly informing affected prospects,” Stellantis wrote within the press launch. The discharge notes that whereas contact info was uncovered, monetary info was not. The assertion didn’t specify the kinds of contact info affected.
The remainder of this text is locked.
Be a part of Entrepreneur+ in the present day for entry.
