Nissan confirmed that the Social Security details from 53,000 of its employees could have been compromised during a reported data breach at its North American branch last November.
According to a letter sent to the Maine Attorney General's office, the Japanese carmaker reported that the threat actors accessed "certain personal information" of its current and former workers.
(Photo : Behrouz Mehri/AFP via Getty Images)
The numbers are only part of the estimated 100,000 individuals, both customers and employees, that could have been affected by the data breach.
According to Help Net Security, at least 10% of the individuals affected have had "some form of government identification compromised."
This is in addition to the business details Nissan reported to have been accessed, including financial details with other car dealers like Mitsubishi, Renault, Skyline, Infiniti, LDV, and RAM.
Nissan Hit with Repeated Cyberattacks in 2023
Although Nissan has yet to confirm any misuse of the stolen data, the company has already offered affected individuals data protection guidelines, including a fraud alert directory.
The data breach was first reported on Nov. 7, after Nissan detected an attack in its external VPN where the threat actors "deliberately shut down" company systems.
Ransomware group Akira later claimed responsibility for the attack and leaked all stolen data after Nissan refused to pay the undisclosed ransom demand.
This was the third consecutive data breach in two months that Nissan suffered last year as cybersecurity experts criticized the company's lax digital defenses and preparation against cyberattacks.
Also Read: UnitedHealth Cyberattack Could Have Affected One-Third of Americans, CEO Claims
How to Protect Personal Information from Nissan Data Breach Impacts?
In addition to the emergency alert notices, Nissan is offering affected customers a free two-year complimentary credit service via Experian's IdentityWorks.
The service will protect users' identity and credentials from being stolen or misused while Nissan continues with its investigations.
Customers are given until Aug. 30, to register for the free credit service before it expires.
Of course, customers can also ensure the security of their digital accounts by updating their passwords, emails, and two-factor authentication systems to prevent bad actors from easily accessing their accounts.
Related Article: Ransomware Attacks Hit More Small Businesses Throughout 2023, Verizon Research Says
