March 14, 2024 at 09:08AM
Nissan Oceania has disclosed a cyberattack in December 2023, attributed to the Akira ransomware operation, affecting 100,000 people. Stolen data includes personal employee information, government IDs, and other personal details. Nissan plans to notify impacted individuals, offering support services and urging vigilance against potential fraudulent activities.
From the meeting notes, it is clear that Nissan Oceania has suffered a data breach impacting approximately 100,000 individuals after a cyberattack in December 2023. The attack was claimed by the Akira ransomware operation. The stolen data includes personal employee information, NDAs, project data, and information on partners and clients.
Nissan confirms that hackers stole data on current and former employees, as well as customers of Nissan, Mitsubishi, Renault, Skyline, Infiniti, LDV, and RAM dealerships in the region. Up to 10% of the impacted individuals had government identification compromised, including Medicare cards, driver’s licenses, passports, and tax file numbers.
The remaining 90% had other personal information impacted, such as loan-related documents, employment details, and dates of birth. Nissan has committed to notifying impacted customers individually to inform them exactly what information was exposed, what they can do, and what forms of support are available.
Unfortunately, the stolen data has been leaked by Akira through its extortion page on the dark web. To support impacted customers, Nissan is providing free access to IDCARE, free credit monitoring services through Equifax in Australia and Centrix in New Zealand, and reimbursement for the replacement of compromised government IDs. Additionally, they advise customers to remain vigilant for suspicious activity on their accounts, report it to the authorities, enable multi-factor authentication where possible, and update passwords regularly.