Tag Archive for: Volkswagen

Stolen From Audi and Volkswagen Available To Be Purchased

/in


Last week, Volkswagen Group of America, Inc. (VWGoA) declared that more than 3.3 million customers and interested buyers had their information exposed in a tremendous data breach, that occurred after a vendor exposed unsecured data on the Internet.

The vendor is a company that provides services to Audi, Volkswagen, and some authorized dealers related to digital sales and marketing activities.

This Monday, cybercriminals put the data stolen from the German motor vehicle manufacturer on sale on an infamous hacking forum.

In a data breach notification, the organization declared:

The data included some or all of the following contact information about you: first and last name, personal or business mailing address, email address, or phone number.

In some instances, the data also included information about a vehicle purchased, leased, or inquired about, such as the Vehicle Identification Number (VIN), make, model, year, color, and trim packages.

Source

While this incident is still under investigation, Audi and Volkswagen think approximately 3.3 million individual customers and interested buyers were impacted, with more or less 163,000 individuals living in Canada.

The Audi and Volkswagen Stolen Data on Sale on a Notorious Hacking Forum

On Monday, a known seller of data stolen during data breaches made the Audi and Volkswagen data available to be purchased on a popular hacking forum.

According to a post on the forum, the sold data consists of over 5 million records, with 3,862,231 records being leads and 1,792,278 records in the sales database.

Audi and Volksvagen forum post

Source

According to Motherboard, a hacker that goes by 000 declared that the information included email addresses and Vehicle Identification Numbers (VIN). The attacker also published two samples of the data, which contained full names, email addresses, mailing addresses, and phone numbers.

When contacted, seven of the people included in the samples confirmed that at least one piece of their information published by the cybercriminals was authentic.

The seller, who obtained the data in March 2021 after finding it in an unsecured Azure Blob container, stated it didn’t include any Social Security Numbers nor drivers’ license details…

Source…

Audi, Volkswagen customer data being sold on a hacking forum

/in


Audi

Audi and Volkswagen customer data is being sold on a hacking forum after allegedly being stolen from an exposed Azure BLOB container.

Last week, the Volkswagen Group of America, Inc. (VWGoA) disclosed a data breach after a vendor left customer data unsecured on the Internet between August 2019 and May 2021.

“The data included some or all of the following contact information about you: first and last name, personal or business mailing address, email address, or phone number,” disclosed VWGoA in a data breach notification.

“In some instances, the data also included information about a vehicle purchased, leased, or inquired about, such as the Vehicle Identification Number (VIN), make, model, year, color, and trim packages.”

The data breach involved 3.3 million customers for Audi, Volkswagen, and some authorized dealers in the USA and Canada.

Stolen data sold on a hacking forum

On June 14th, a known seller of data stolen during data breaches put the Audi and Volkswagen data up for sale on a popular hacking forum.

According to a post on the forum, the sold data consists of over 5 million records, with 3,862,231 records being leads and 1,792,278 records in the sales database.

Audi data for sale on a hacking forum
Audi data for sale on a hacking forum

While the leads database contains contact information and phone numbers for prospective buys, the seller states that the sales database contained a great deal more information, including VINs, business numbers, information about the driver, and vehicle information.

According to Vice, who first reported on the sale of this data, the hacker said they accessed the exposed data in March after finding it in an unsecured Azure Blob container.

The hackers are asking between $4,000 and $5,000 for all of the records and said the database does not contain any customers’ social security numbers.

The threat actor had previously told BleepingComputer that they were selling the database for a VPN service provider with multiple Android apps on the Google Play Store for $1,000.

They also claimed responsibility for a data breach at the popular recipe site, Copy Me That.

Source…

Airbus, Porsche, Toshiba And Volkswagen Data Stolen In Massive Breach — What You Need To Know – Forbes

/in

Airbus, Porsche, Toshiba And Volkswagen Data Stolen In Massive Breach — What You Need To Know  Forbes

Stolen financial data from some of the world’s best-known companies, including Airbus, Oracle, Porsche, Toshiba and Volkswagen has been published online …

“data breach” – read more

Volkswagen has a technology problem: It fixes things by hiding them

/in

Volkswagen is in a lot of trouble for installing software on some of its diesel cars that figures out when they are undergoing emissions tests so it can adjust the cars to put out nitrogen oxide at acceptable levels.

That’s likely to win the company billions of dollars in fines, but it’s not the first time the company has hidden problems rather than fix them.

Just last month, security researchers delivered a paper that showed three ways to get around the Volkswagen lockout system that prevents its cars from being started unless the correct key with the correct chip embedded is used to crank it over.

The paper was noteworthy for the ingenuity of the three attacks it outlines but also for the length of time it sat on the shelf before being delivered to the public. It was ready to go back in 2013 but Volkswagen got a court order to block it then, and that was nearly a year after the researchers had told the manufacturers of the hardware about it under the principle of responsible disclosure.

To read this article in full or to leave a comment, please click here

Network World Tim Greene