Up to 100,000 Australian and New Zealand customers may have been affected by Nissan’s December cyber incident.
The company first disclosed the incident on December 5, saying its corporate and financial services in business units in Australia and New Zealand were impacted.
Today, Nissan Australia provided an update in which it said it has begun contacting affected customers.
“We now know the list of affected individuals includes some of Nissan’s customers (including customers of our Mitsubishi, Renault, Skyline, Infiniti, LDV and RAM branded finance businesses), dealers, and some current and former employees,” the company said.
“Nissan expects to formally notify approximately 100,000 individuals about the cyber breach over the coming weeks.
“This number might reduce as contact details are validated and duplicated names are removed from the list.”
The company said some form of government information was impacted in as many as 10 percent of cases, including around 4000 Medicare cards, 7500 drivers’ licences, 220 passports, and 1300 tax file numbers.
“The remaining 90 percent of individuals being notified have had some other form of personal information impacted; including copies of loan-related transaction statements for loan accounts, employment or salary information or general information such as dates of birth,” the statement continued.
Nissan said support measures on offer include “access to IDCARE, free credit monitoring, and reimbursement where the replacement of government ID is recommended by the relevant issuing authority.”