Skip to main content

3.3 million US & Canadian Volkswagen customer data stolen

3.3 million US & Canadian Volkswagen customer data stolen. Volkswagen Group of America announced today (June 11, 2021) that more than 3.3 million potential and actual Audi customers in the U.S. and Canada had personal data exposed by vendor. At least some data was taken without authorization.

Volkswagen and Audi, VW’s luxury brand, have been hit by a data breach that exposed the contact information and, in some cases, personal details, like driver license numbers & social security number of customers in the United States and Canada.

3.3 million people’s data was left unsecured on the Internet for over a year by the vendor. The breach stems from an outside vendor that Volkswagen, Audi, and some of their dealerships use. Gathered between 2014 and 2019, the data collected for marketing purposes.

The company has reached out to 90,000 people in the US. Mostly Audi customers or shoppers, that included driver’s license numbers and, in a small number of cases, Social Security numbers, VW or Audi account numbers and dates of birth. The company is offering free credit protection to those who had very sensitive information taken.

The breach included data from people who had merely inquired about purchasing an Audi or VW vehicle, according to a statement from Volkswagen USA.

The data, which was stolen from an outside vendor that VW and Audi and some of their dealers use, had been gathered between 2014 and 2019. The information had been collected and saved for marketing purposes, according to VW, and had been left in an unsecured file. VW did not name the vendor.

“We regret any inconvenience this may cause our current or potential customers,” VW USA said in a statement. “As always, we recommend that individuals remain alert for suspicious emails or other communications that might ask them to provide information about themselves or their vehicle.”

Labels:

Popular posts from this blog

Signal Introduces Usernames for Encrypted Messaging: A Secure Way to Connect

Signal, the encrypted messaging service, is launching a new feature in the coming weeks: support for usernames. This beta feature allows users to establish unique usernames, enabling connections without divulging phone numbers. source: Signal Blog To create a username, navigate to your settings and select "Profile." Once you've chosen a unique username, generate a QR code or link to share with others. Recipients can connect by entering your username into the chat bar. Usernames can be changed at any time, though previous usernames may be claimed by others. Signal began testing usernames last fall. Unlike social media platforms, Signal usernames do not serve as logins or public handles. They offer a discreet means of communication without revealing personal phone numbers. While a phone number is required to register for Signal, sharing it is optional. Usernames remain private and do not appear on profiles or in chats unless shared explicitly. As Randall Sarafa, Signal'
Read more

AT&T Resets Millions of Customer Passcodes After Data Leak: What You Need to Know

AT&T recently confirmed a significant data breach affecting over 7.6 million current customers and 65 million former customers. The leaked information, which dates back to 2019 or earlier, includes personal details like names, addresses, phone numbers, and social security numbers. Fortunately, financial information and call history were not compromised. In response to the breach, AT&T has reset passcodes for affected customers. Passcodes, usually four-digit numbers, serve as an additional layer of security when accessing accounts. However, security experts warn that the encrypted passcodes leaked alongside customer information could be easily deciphered, posing a risk of unauthorized account access. Affected customers are advised to set up free fraud alerts with major credit bureaus and remain vigilant for any suspicious activity related to their accounts. AT&T is proactively reaching out to impacted customers via email or letter to inform them about the breach and the meas
Read more

Safeguarding Internet Privacy: Supreme Court of Canada Upholds Protection of IP Addresses

In a recent ruling, the Supreme Court of Canada affirmed the significance of privacy rights concerning internet addresses. The court declared that police cannot simply obtain a suspect’s IP address without a court order, emphasizing the expectation of privacy that Canadian residents hold for such information. The court's decision stemmed from a case in 2017 involving Calgary police investigating fraudulent online activities at a liquor store. Initially, police demanded IP addresses from a credit card processor, which eventually led to obtaining subscriber information from Telus. This information was pivotal in making arrests and securing convictions in multiple offenses. Despite previous convictions, the accused contested the legality of obtaining IP addresses without proper authorization. The Supreme Court, in a 5-4 decision, asserted that IP addresses carry a reasonable expectation of privacy, necessitating judicial approval before access. The ruling emphasizes that obtaining jud
Read more