- About Us
We 365 Admin Support, just simplify your IT problems
Call for a free support. +91 96666 59505Platform Partnership
Nissan Motor Co. Ltd. has confirmed that the details of thousands of its customers have been compromised due to a data breach that occurred at Red Hat in September.
This prominent automobile manufacturer, based in Yokohama, Japan, produces over 3.2 million vehicles annually and employs around 120,000 individuals. Nissan has a significant presence across Japan, North America, Europe, and Asia.
In a statement issued yesterday, Nissan revealed it was indirectly affected by a security incident involving the U.S.-based software company Red Hat.
“Nissan Motor Co., Ltd. received a report from Red Hat, which was contracted to develop customer management systems for our sales companies, indicating that unauthorized access to its data servers led to the leakage of our data,” the company stated.
“It was subsequently confirmed that the leaked data included customer information from Nissan Fukuoka Sales Co., Ltd.”
In total, around 21,000 customers who bought vehicles or utilized services at Nissan in Fukuoka, Japan, had their information compromised, which included:
The automaker emphasized that no financial information, including credit card details, was involved in this breach.
The breach at Red Hat, first disclosed in early October, involved the theft of hundreds of gigabytes of sensitive data from 28,000 private GitLab repositories, initially claimed by a threat group known as Crimson Collective.
Subsequently, ShinyHunters became involved, hosting samples of the stolen data on their extortion platform to exert pressure on the affected firm.
Nissan stated that the compromised Red Hat environment did not store any data beyond what has been confirmed as affected and that there is no evidence of misuse of the leaked information.
BleepingComputer has reached out to Nissan Japan, Nissan Europe, and Nissan Americas for further comment regarding the impact of the Red Hat incident on their operations, but has yet to receive a response as of this publication.
This marks Nissan Japan’s second cybersecurity incident this year, following a Qilin ransomware attack in late August that affected its design subsidiary Creative Box Inc. (CBI).
In the previous year, Nissan North America experienced a data breach that affected 53,000 employees, while Nissan Oceania disclosed that an Akira ransomware attack compromised the data of 100,000 customers.
Broken IAM is not just an IT issue – its effects resonate throughout your entire organization.
This practical guide delves into why traditional IAM practices are insufficient for modern challenges, showcases examples of effective IAM, and provides a straightforward checklist for crafting a scalable strategy.
