Renault and Dacia UK alert customers to data breach
▼ Summary
– Renault and Dacia UK customers were notified of a data breach at a third-party provider that compromised their sensitive information.
– The exposed data includes personal details like full names, contact information, and vehicle identification numbers, but no banking or financial data was affected.
– The third-party provider has isolated the incident and removed the threat, with UK authorities including the ICO being informed of the cyberattack.
– Renault has not disclosed the number of impacted customers or the identity of the third-party supplier due to contractual agreements.
– This incident follows a recent cyberattack on Jaguar Land Rover, which severely disrupted its operations and required a government-backed loan to recover.
Customers of Renault and Dacia in the United Kingdom have received notifications regarding a security incident that exposed their personal details. This data breach occurred at an unnamed third-party service provider, affecting individuals who shared information with the automotive brands. Renault, a major global manufacturer with annual revenues surpassing $55 billion, employs 170,000 people and produces approximately 2.2 million vehicles each year. Dacia, its subsidiary, is recognized for offering dependable and budget-friendly cars.
Official communications from both brands confirm they were impacted by a cybersecurity event at this external provider. Renault UK expressed regret in its customer notice, stating, “We are very sorry to inform you about a cyber-attack on one of our third-party providers, leading to some Renault UK customers’ personal data being taken from one of their systems.”
The compromised data includes several personal identifiers, including full names.
Such details could be exploited by malicious actors for phishing attempts, fraudulent scams, and social engineering attacks.
Renault clarified that no banking or financial information was accessed during the incident. The company stated that its third-party service provider has contained the breach and removed the threat from its systems. Both the Information Commissioner’s Office (ICO) and other UK authorities have been notified.
When asked about the supplier’s identity and the number of affected customers, a Renault spokesperson said the exact figure remains unknown, adding that contractual obligations prevent disclosure of the provider’s name.
Renault urged affected individuals to remain vigilant and avoid sharing passwords or sensitive details when responding to unexpected calls or emails.
This breach comes shortly after a cyberattack on Jaguar Land Rover in the UK, which disrupted operations for nearly a month and prompted a £1.5 billion government-backed loan to help restore its supply chain.
(Source: Bleeping Computer)
