Ford is investigating allegations that it suffered a knowledge breach after a risk actor claimed to leak 44,000 buyer data on a hacking discussion board.
The leak was introduced on Sunday by risk actor ‘EnergyWeaponUser,’ additionally implicating the hacker ‘IntelBroker,’ who supposedly took half within the November 2024 breach.
The risk actors leaked on BreachForums 44,000 Ford buyer data containing buyer info, together with full names, bodily places, buy particulars, vendor info, and report timestamps.
The uncovered data aren’t extraordinarily delicate, however they nonetheless comprise personally identifiable info that might empower phishing and social engineering assaults focusing on the uncovered people.
The risk actors didn’t try and promote the dataset however as an alternative provided it to registered members of the hacker discussion board for eight credit, equal to a bit over $2.
Supply: BleepingComputer
BleepingComputer contacted Ford to validate the claims, and a spokesperson for the agency advised us they’re investigating the allegations.
“Ford is conscious and is actively investigating the allegations that there was a breach of Ford information. Our investigation is energetic and ongoing,” Ford advised BleepingComputer.
The involvement of IntelBroker within the breach lends some credibility to the risk actor’s allegations based mostly on the risk actor’s latest report.
The hacker has lately achieved confirmed breaches at Cisco’s DevHub portal, Nokia (via a 3rd social gathering), Europol’s EPE internet portal, and T-Cell (through a vendor).
The places talked about within the information samples leaked by the risk actors are from world wide, together with the USA.
To mitigate the dangers arising from this potential information publicity, deal with unsolicited communications cautiously and reject requests to disclose extra info underneath any pretense.