Search
Get in Touch
News

Nissan says Red Hat breach affected thousands of customers

TechRadar
TechRadar
  • Nissan confirms supply chain breach via Red Hat, exposing data of ~21,000 customers
  • Stolen info includes names, addresses, phone numbers, and partial emails; no financial data compromised
  • Crimson Collective blamed; ShinyHunters posted sample files on extortion platform

Japanese car giant Nissan has confirmed losing sensitive data on thousands of people as a result of a third-party supply chain attack.

In a press release, the company said the recent attack on Red Hat affected its customers, as well, as the latter was commissioned by Nissan to develop a customer management system for one of its sales companies – Nissan Fukuoka Sales Co.

In late September, Red Hat detected unauthorized access which, as was later determined, resulted in the theft of hundreds of gigabytes of sensitive data from 28,000 private GitLab repositories.

Crimson Collective and ShinyHunters

Red Hat ousted the attackers and notified Nissan in early October 2025, saying that approximately 21,000 customers, who have purchased vehicles or received services, have had addresses, names, telephone numbers, and parts of the email address compromised.

Customer-related information used in sales activities was also stolen, but credit card information and other banking data was not.

“We sincerely apologize for any inconvenience and concern this may have caused to our customers and related parties,” Nissan said in a machine-translated announcement, and stressed that it will reach out to affected individuals.

The crooks took everything they found on the compromised servers, Nissan further explained, emphasizing that there is “no risk of further data leakage.”

The company says that so far, there has been no evidence that the stolen files were misused in the wild but urged its customers to be wary of incoming emails or other communications, especially those pretending to come from the carmaker.

It did not name the attackers, but BleepingComputer claims it was done by a group called Crimson Collective. Soon after, the infamous ShinyHunters hosted a sample of the stolen files on their extortion platform, too.

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Read more @ TechRadar

Previous article
Dyson Spot+Scrub Ai robot vacuum first impressions: an impressive featureset but a disappointing app
Next article
‘It’s good to have limitations’: Clair Obscur: Expedition 33’s creative director says Sandfall Interactive’s next game won’t on a bigger scale despite huge success
TechRadar
TechRadar

Latest posts

Siri won’t be your AI girlfriend

The Verge - 0
‘Listen, that's not what I'm here for, right?' | Image: Apple Our early testing has already shown that Siri AI knows when to shut up,...

Amazon’s Echo Hub gets a customizable new look and Ring’s AI features

The Verge - 0
Amazon's rolling out a free software update for Echo Hub devices that gives the home screen a much-needed update to the interface it launched...

Telegram brings back its Wear OS app after five years with chats, voice messages, more

9to5google - 0
Five years after killing its Wear OS app, Telegram is reviving support for Android smartwatches with its latest update. Read more @ 9to5google

Waze now shows traffic lights on your route, but it’s rolling out slowly

9to5google - 0
In testing for several months now, Waze is starting to roll out traffic lights more widely in navigation, but it’s still not available to...

Here are the price-matching policies for Best Buy, GameStop, and others

The Verge - 0
Nothing is more frustrating than buying a new pair of headphones, an OLED TV, or a laptop just to find out that you could...

The bill that would let Jimmy Kimmel sue Brendan Carr is here

The Verge - 0
Under a new bipartisan bill, Americans could sue for damages if a government official illegally tries to coerce a social media, AI, or broadcasting...

Amazon’s data centers used 2.5 billion gallons of water last year

The Verge - 0
Just after Seattle enacted a one-year data center moratorium that some of Amazon's own employees pushed for, Amazon shared how much water its data...

Roborock’s Q10 S5 Plus robovac is over half off, matching its best price to date

The Verge - 0
Roborock’s Q10 S5 Plus comes with a self-emptying dock and is under $300. | Image: Roborock Even at full price, the Roborock Q10 S5 Plus...

Blink’s six-piece outdoor camera kit is a great deal under $200

The Verge - 0
You can save on a big set of outdoor security cameras ahead of Prime Day. Amazon has a five-pack of Blink cameras with a...

Logitech’s awesome MX Master 3S mouse drops to under $100

The Verge - 0
The platform-agnostic Logitech MX Master 3S wireless mouse is discounted to $89.99 at Amazon ($30 off), matching the best price we’ve seen so far...
AIVAnet is an independent technology publication covering artificial intelligence, software, mobile technology, cybersecurity, cloud computing, business applications and digital innovation.
Founded in 2003, AIVAnet delivers technology news, industry analysis, product reviews, tutorials and insights designed for professionals, businesses and technology enthusiasts worldwide.
Our mission is to help readers stay informed about emerging technologies, industry trends and practical solutions that shape the future of business and everyday life.
For advertising, sponsored content and partnership opportunities, please contact our team through our Contact page.

AIVAnet is supported by Cloud Services Store

About Us

© AIVAnet | All rights reserved