Nissan Confirms Impact From Red Hat Data Breach
securityweek
Japanese car maker Nissan has disclosed the impact of a data breach involving a self-managed GitLab instance used by the Red Hat Consulting team.
The incident leading to the Nissan data breach occurred in late September and involved unauthorized access to a GitLab instance containing example code snippets, internal communications, and project specifications.
A hacking group named Crimson Collective attempted to extort Red Hat, claiming the theft of 570 Gb of compressed data from 28,000 private repositories, including information that allegedly provided access to Red Hat customers’ infrastructure.
Nissan now says that some of the data stolen from Red Hat’s instances included personal information of 21,000 customers of Nissan Fukuoka Sales (previously Fukuoka Nissan Motor).
The personal information, the car maker says, includes names, addresses, phone numbers, partial email addresses, and information used for sales activities.
No credit card data was stolen, and no other customer information ...
Copyright of this story solely belongs to securityweek . To see the full text click HERE