Mercedes-Benz USA disclosed a data breach within one of its vendors in which customers’ and potential buyers’ sensitive and personal information were leaked.
The company stated that fewer than 1,000 customers were affected by the breach. The information comes from customers who entered various personal details on Mercedes-Benz websites between Jan. 1, 2014 and June 19, 2017.
The information was stored on a vendor’s cloud storage platform and was “inadvertently made accessible.” The vendor immediately fixed the security issue after an external security researcher discovered it.
The customers and potential customers from the affected time period may have had their information such as driver’s license numbers, Social Security numbers and credit card information leaked. The self-reported credit scores and dates of birth are also included in the data breach.
According to the automobile company, one would need knowledge of special software programs and tools to gain access to the actual data. An internet search would not return any information contained in these files. The vast majority of the info leaked is customers’ names, addresses, email addresses and phone numbers.
Those persons who had more sensitive information breached, such as a Social Security number or credit card info, will be given a complimentary 24-month subscription to a credit monitoring service.
The company had already started to contact the affected individual and will notify the appropriate government agencies.
Image Credits : NDTV