Threat actors claim to have breached Ford
Two hackers claim to have stolen 44,000 customer records from the Ford Motor Company. The Michigan-based car manufacturer says it’s ‘actively investigating’ the incident.
IntelBroker and EnergyWeaponUser, two notorious and well-known hackers, claim to have breached Ford’s corporate network and gained access to a database containing customer information.
They say they were able to exfiltrate 44,000 records, including customer names, physical locations and bought products.
The database was published on a hacking forum on the dark web last Sunday. “Today, I have uploaded the Ford Motor Company internal database for you to download, thanks for reading and enjoy!,” the enclosed message says.
Ford is looking into the allegations of the supposed data breach.
“Ford is aware and is actively investigating the allegations that there has been a breach of Ford data. Our investigation is active and ongoing,” spokesperson Richard Binhammer told The Register.
IntelBroker is a well-known hacker who’s allegedly responsible for data breaches at DC Health Link, AMD, Cisco, T-Mobile, Apple, Hewlett Packard Enterprise (HPE), Home Depot, and the Europol Expert Platform (EPE).
Earlier this month, IntelBroker said that he and EnergyWeaponUser stole corporate data from Nokia, including login credentials and Nokia’s source code. The hackers were asking $20,000 for the information.
A few days later, Nokia confirmed that hackers indeed were responsible for the data breach. However, the information was taken from a third party vendor and the company and its customers weren’t in any danger.
“We have found no evidence that this 3rd party incident would in any way endanger critical Nokia systems or data, including source code, customized software, or encryption keys. Our customers are in no way impacted, including their data and networks,” the Finland-based tech company said in a statement.
In addition, Nokia said the leaked source code was for an application that was developed by a third party to work only in one network belonging to a Nokia client. Therefore, it doesn’t contain any source code from Nokia.
In an additional statement to BleepingComputer, a Ford spokesperson states that none of Ford’s computer systems were breached and no customer data was stolen.
“Ford’s investigation has determined that there was no breach of Ford’s systems or customer data. The matter involved a third-party supplier and a small batch of publicly available dealers’ business addresses. It is our understanding that the matter has now been resolved.”
Your email address will not be published. Required fields are marked