Cybercriminals from an unknown organization have claimed to have stolen data from South Korean car manufacturer Hyundai. The threat group shared the news via two posts between December 6 and December 9, 2022.
According to sources, the threat group posted information regarding the incident on popular underground hacking forums, Breach Forums, claiming access to the records of 120,000 Hyundai car owners.
The threat group at the tier VIP status on the forum also released a small chunk of the stolen data to verify their claims. The image below shows the post shared by a threat actor, which claims to have stolen the data of Hyundai clients and car owners.
Hyundai car user database hacked
According to another post shared by the threat group on the underground forum, the data is on sale and available for $120. The data, which contains the user names, reveal that the car owners are of Indian origin and have their personal information, including insurance number, registered mobile number, and several crucial data on sale.
Major business, major attacks
Hyundai Motor Company, also known as Hyundai Motors or just Hyundai, is a South Korean multinational vehicle manufacturer located in Seoul. Hyundai Motor India Ltd is a completely owned subsidiary of the Hyundai Motor Company. It is India’s second largest vehicle manufacturer, with a 15% market share by 2022 and a $5.5 billion turnover.
The car manufacturer also has a big market share in Northern America and caters to Asian markets with the highest number of vehicle production. In recent years, the number of attacks on such manufacturers has increased.
Researchers at Yuga Labs recently recently found bugs in Hyundai and Genesis vehicles that could allow an unauthenticated entity to control the car remotely.
In February 2021, hackers accessed Hyundai Motor America’s logistics operations, leaking sensitive supply chain and partner data. The US division conceded that an “IT outage” happened, but refrained from confirming whether that was a ransomware attack.
A week before that, the company’s subsidiary Kia Motors America reported an IT disruption. It was later reported that Kia was targeted by a ransomware attack by DoppelPaymer. The attackers then asked for $20 million in ransom.