Current:Home > reviewsNissan data breach exposed Social Security numbers of thousands of employees-LoTradeCoin
Nissan data breach exposed Social Security numbers of thousands of employees
lotradecoin cross-chain trading solutions View Date:2024-12-25 12:39:55
Nissan suffered a data breach last November in a ransomware attack that exposed the Social Security numbers of thousands of former and current employees, the Japanese automaker said Wednesday.
Nissan's U.S.-based subsidiary, Nissan North America, detailed the cyberattack in a May 15 letter to affected individuals. In the letter, Nissan North America said a bad actor attacked a company virtual private network and demanded payment. Nissan did not indicate whether it paid the ransom.
"[U]pon learning of the attack, Nissan promptly notified law enforcement and began taking immediate actions to investigate, contain and successfully terminate the threat," the car maker said in the letter, adding that "Nissan worked very closely with external cybersecurity professionals experienced in handling these types of complex security incidents."
Nissan told employees about the incident during a town hall meeting in December 2023, a month after the attack. The company also told staffers that it was launching an investigation and would notify employees privately if their personal information had been compromised. Nissan said it's providing free identity theft protection services to impacted individuals for two years.
Nissan North America also notified state officials across the U.S. of the attack, noting that data belonging to more than 53,000 current and former workers was compromised. But the company said its investigation found that affected individuals did not have their financial information exposed.
Nissan North America "has no indication that any information has been misused or was the attack's intended target," the automaker said in its letter.
Ransomware attacks, in which cybercriminals disable a target's computer systems or steal data and then demand payment to restore service, have become increasingly common. One cybersecurity expert said someone likely got a password or multi-factor authentication code from an existing Nissan employee, enabling the hacker to enter through the company's VPN.
"It is unfortunate that the breach ended up involving personal information, however Nissan has done the right thing by continuing to investigate the incident and reporting the update," Erich Kron, a cybersecurity awareness advocate at KnowBe4, told CBS MoneyWatch in an emailed statement. "In this case, targeting the VPN will often help bad actors avoid detection and bypass many of the organizational security controls that are in place."
- In:
- Nissan
- Data Breach
- Cyberattack
- Ransomware
Khristopher J. Brooks is a reporter for CBS MoneyWatch. He previously worked as a reporter for the Omaha World-Herald, Newsday and the Florida Times-Union. His reporting primarily focuses on the U.S. housing market, the business of sports and bankruptcy.
TwitterveryGood! (9)
Related
- Mystery drones are swarming New Jersey skies, but can you shoot them down?
- Video: The Standing Rock ‘Water Protectors’ Who Refuse to Leave and Why
- Chrissy Teigen Says Children Luna and Miles Are Thriving as Big Siblings to Baby Esti
- In Mount Everest Region, World’s Highest Glaciers Are Melting
- This house from 'Home Alone' is for sale. No, not that one.
- 27 Stars Share Their Go-To Sunscreen: Sydney Sweeney, Olivia Culpo, Garcelle Beauvais, and More
- Electric Car Startup Gains Urban Foothold with 30-Minute Charges
- Sunnylife’s Long Weekend Must-Haves Make Any Day a Day at the Beach
- Sabrina Carpenter reveals her own hits made it on her personal Spotify Wrapped list
- Thwarted Bingaman Still Eyeing Clean Energy Standard in Next Congress
Ranking
- Off the Grid: Sally breaks down USA TODAY's daily crossword puzzle, Follow Your Dreams
- Matty Healy Resurfaces on Taylor Swift's Era Tour Amid Romance Rumors
- Unable to Bury Climate Report, Trump & Deniers Launch Assault on the Science
- Georgia Gov. Brian Kemp warns GOP not to get bogged down in Trump indictment
- The brewing recovery in Western North Carolina
- Students harassed with racist taunts, Confederate flag images in Kentucky school district, Justice Department says
- Paul McCartney says AI was used to create new Beatles song, which will be released this year
- Did Damar Hamlin experience commotio cordis? What to know about the rare phenomenon
Recommendation
-
Singaporean killed in Johor expressway crash had just paid mum a surprise visit in Genting
-
Here's How North West and Kim Kardashian Supported Tristan Thompson at a Lakers Game
-
The Period Talk (For Adults)
-
Italy’s Green Giant Enel to Tap Turkey’s Geothermal Reserves
-
Luigi Mangione's Lawyer Speaks Out in UnitedHealthcare CEO Murder Case
-
In Trump, U.S. Puts a Climate Denier in Its Highest Office and All Climate Change Action in Limbo
-
Wheel of Fortune host Pat Sajak retiring
-
MacKenzie Scott is shaking up philanthropy's traditions. Is that a good thing?