Ford Data Breach, Hackers Allegedly Leaked 44K Customer Data


Ford Motor Company, the American multinational automobile manufacturer, is reportedly investigating a potential data breach after hackers claimed to have stolen and leaked an internal database containing sensitive customer information.

The incident, which allegedly occurred in November 2024, has raised concerns about the security of Ford’s customer data and the potential implications for affected individuals.

SIEM as a Service

A threat actor known as “EnergyWeaponUser,” associated with the notorious hacker IntelBroker, claims to have exfiltrated an internal database from Ford’s network.

Post on a popular hacking forum (Source – X)

Ransom-DB researchers observed that the leaked data allegedly contains approximately 44,000 customer records, including names, physical locations, and details of purchased products.

Maximizing Cybersecurity ROI: Expert Tips for SME & MSP Leaders – Attend Free Webinar

Data Breached

The sample data shared by the hackers reportedly includes:-

  • Customer names
  • Physical addresses
  • Country codes
  • Customer type codes
  • City information
  • Sales types
  • Account codes
  • Last update timestamps
  • Other records such as “is parent?” and “PA_CD”

The leaked information appears to pertain to customers from various countries, including the United States, China, Spain, Zimbabwe, Mozambique, and St. Lucia, among others.

Ford Motor Company has acknowledged the allegations and stated that they are “actively investigating” the claims of a data breach.

Richard Binhammer, a spokesperson for Ford, told The Register, “Our investigation is active and ongoing.” However, the company has not yet issued a public statement confirming or denying the breach.

If confirmed, this data breach could have significant implications for Ford and its customers. The exposed information could potentially be used for various malicious purposes, including identity theft, phishing attacks, and targeted scams.

The incident may also damage Ford’s reputation and destroy customer trust in the company’s ability to protect sensitive information.

This alleged breach comes at a time when cyber attacks on major corporations are becoming increasingly common. Earlier this year, Australian company Eagers Automotive, which owns numerous car dealerships including Ford, suffered a cyber attack that led to a halt in trading.

As the investigation continues, Ford customers are advised to remain vigilant and monitor their accounts for any suspicious activity.

Are you from SOC/DFIR Teams? – Analyse Malware Files & Links with ANY.RUN -> Try for Free



Source link