Skoda Data Breach Hits Online Shop Customers

Automobile manufacturer Skoda has disclosed a data breach impacting the personal information of its online shop’s users.

The incident, the company says, was discovered as part of its technical security monitoring and was the result of a vulnerability in the portal’s software.

Immediately after learning of the cyberattack, the car maker took the shop offline, patched the exploited vulnerability, reviewed existing security mechanisms, and retained external forensics experts to help with the investigation. It also notified the relevant authorities.

The hackers, it explains, exploited the bug to access the shop system and accessed data processed through it, including customer names, addresses, email addresses, phone numbers, order details, and information on user accounts.

According to Skoda, password hashes were also accessed as part of the breach, but no credit card data was compromised, as these details are processed exclusively through payment service providers and not stored on its systems ...