Hyundai Data Breach Exposes SSNs and Driver’s Licenses
▼ Summary
– Hyundai AutoEver America discovered a cyber intrusion on March 1, 2025, with unauthorized access dating back to February 22, 2025.
– The company provides IT services for Hyundai Motor Group, including vehicle telematics, autonomous driving systems, and digital manufacturing platforms.
– Exposed personal information includes names, Social Security Numbers, and driver’s licenses, though the full scope of impacted individuals is unclear.
– Hyundai AutoEver America engaged external cybersecurity experts and law enforcement, but the perpetrators remain unknown with no ransomware group claiming responsibility.
– This incident follows previous cybersecurity issues at Hyundai, including ransomware attacks and vulnerabilities in vehicle apps and anti-theft systems.
A significant data breach at Hyundai AutoEver America (HAEA) has compromised sensitive personal information, including Social Security numbers and driver’s licenses. The company, which serves as the primary IT provider for Hyundai Motor Group’s automotive operations, detected the security incident on March 1, 2025, though forensic analysis indicates unauthorized system access began nearly a week earlier on February 22nd.
Hyundai AutoEver America functions as the technological backbone for Hyundai and Kia affiliates, delivering specialized IT consulting and managed services across the entire automotive lifecycle. Their responsibilities encompass critical systems like vehicle telematics, over-the-air software updates, navigation mapping, and connectivity platforms. The company additionally supports manufacturing operations through digital production systems and manages enterprise resource planning software for sales and distribution networks.
With approximately 5,000 employees supporting infrastructure for two million users across 2.7 million vehicles, HAEA’s security compromise carries substantial implications. In their official notification to affected individuals, the company stated they “immediately launched an investigation with the support of external cybersecurity experts” upon discovering the breach. The investigation confirmed unauthorized activity persisted through March 2, 2025, prompting collaboration with law enforcement agencies.
While the company’s initial breach notification specifically referenced the exposure of names, documentation from Massachusetts authorities confirms the far more serious compromise of Social Security numbers and driver’s license information. The precise scope of affected individuals remains uncertain, with questions lingering about whether the breach impacted only employees or extended to vehicle owners and system users. Hyundai has yet to clarify the total number of people affected by this security failure.
No ransomware organizations have publicly claimed responsibility for the attack at this time, leaving the identity and motives of the perpetrators unknown. This incident continues a troubling pattern of cybersecurity challenges for Hyundai, which has faced multiple breaches in recent years. Their European operations previously fell victim to the Black Basta ransomware gang, while separate incidents exposed owner data in Italy and France.
Security researchers have additionally identified vulnerabilities in Hyundai’s digital ecosystem beyond this breach. The companion mobile application for Hyundai and Kia vehicles demonstrated serious security weaknesses that could permit unauthorized remote vehicle access. These concerns compound recent revelations about ineffective anti-theft systems in their vehicles, creating a multifaceted security challenge for the automotive manufacturer.
(Source: Bleeping Computer)
