Hertz says that the personal data of customers and driver licenses stolen in data breach

Hertz car giant began notifying its customers to violate the data that included their personal information and driver licenses.

The rental company, which also has brands in dollars and self In notifications on its website The violation is related to the electronic attack on one of its sellers between October 2024 and December 2024.

The stolen data varies depending on the region, but it greatly includes the names of HERTZ customers, birth dates, communication information, driver licenses, payment card information and workers’ compensation demands. Hertz said that fewer clients have obtained social security numbers in breach, along with other identification figures issued by the government.

Notifications on Hertz sites revealed customer breach in Australiaand Canadathe European Unionand New Zealandthe UK.

Hertz also revealed a violation with many American states, including California and Maein. Hurtz said that at least 3,400 customers in the state of Mine were affected, but they did not list the total number of affected individuals, which is likely to be much higher.

Emily Spencer, a spokesperson for Hurtz, will not provide a specific number of individuals affected by rags, but they said it would be “inaccurate to say millions” of clients.

The company was broken by the seller, Cleo Software, which was last year In a large campaign center By the Ranomwari gang Russia is prolific.

HERTZ is one of the dozens of companies that used Cleo at their time of databases. The Clop Ransomware gang claimed last year that she had exploited A. Spain twice In the widely used institution file transfer products, which allow companies to share large groups of sensitive data online. By violating these systems, infiltrators stole groups of data from Cleo customers.

Soon after, the Cloop Ransomware gang on the dark web leakage site claimed that it Stole data from approximately 60 companies By exploiting the defect in their Cleo systems. In a later post, Klopp claimed dozens of victims of alleged companies.

The data blackmail campaign has become one of The most common magnitude in 2024.

At that time, Hurtz, who was named on Club, said he had “no evidence” that Hurtz or Hurtz’s systems have been affected.

On Monday, Hirtz spokesperson Techcrunk told that he had not found any evidence that the Hurtz private network was affected by rags, but confirmed that Hurtz’s data “obtained by a third -party unauthorized third party to understand the weaknesses on a zero day exploited inside the Cleio platform in October 2024 and 2024”.

Cleo’s Calio Executive Officer did not respond to Techcrunch on Monday.