HERTZ, which causes cars, warns its customers against exposed data, including driver licenses, credit card data, and communication information. In some cases, social security numbers or passports.
The company said that the infiltrators have violated Cleo CommunicationsIt is a company that works with file transfers.
The company said in a Data incident notification statement (PDF) on its website: “We have completed this data analysis on April 2, 2025, and we concluded that the personal information involved in this event may include the following: name, contact information, birth date, credit card information, driver’s license information and information about Medicare information or Medicad (associated with workers.” With car accident claims affected by the event. “
In an additional statement to CNET, a company spokesman said that Hurtz takes privacy and security seriously.
“The most important thing, so far, our criminal investigation has not found any evidence that the Hartz network is affected by this event,” the spokesman said. “However, among many other companies affected by this event, we confirmed that the HERTZ data was obtained by an unauthorized third party to understand the weaknesses on zero on the Cleo platform in October 2024 and December 2024.”
Wk kelogg (yes, grain company) It seems that it was affected as well Through the same window of the weak data that Hurtz says between October and December 2024, Hurtz says he is familiar with rating on February 10.
Hirtz is Its agents are submitted to two years of protecting identity theft With Kroll and include a phone number to call for information about Breach, 866-408-8964.
Another in a long list of violations
Over the past few years, consumers have to deal with the repercussions of widespread data violations that affected corporate customers, including AT & Tand Ticketmaster and I am free.
Franklin OrlenaThe cybersecurity expert and head of a data science program at the University of the Post said that Hurtz’s breach may be different in the type of information collected.
“Although the volume of Hertz breach may not be large like some modern events, the nature of what has been exposed makes it particularly related to,” said Uriena. “This type of sensitive data can be far -reaching in its effects on consumers, especially in cases of identity theft or fraud on the license.”
He said that such incidents are part of a rise in data violations that affect companies sellers at the third party. Orellana referred to the management of the National Credit Union A few years before It shows that 73 percent of data violations included a third party that was working with a credit union.
Participation of data with third parties can increase the capabilities of the attack.
“These violations are generally due to the lack of control or vision in the security position of these partners, and therefore the risks of the supply chain are one of the most important concerns in cybersecurity today,” he said.
He said that with regard to what consumers can do about the weaknesses they cannot bear directly, there are not many options for protection.
“Unfortunately, in such cases, consumers are largely incapable. You can do everything properly, strong passwords, bilateral factors, and modern programs, and are still weak if a third party does not store your data safely.”
“The burden is really on companies to carefully examine the sellers and have strong policies to protect data through the entire ecosystem,” Orellana added.
https://www.cnet.com/a/img/resize/a1322ebd28879fe5a8eefc353237281386f1d134/hub/2021/10/25/26e1bcfc-7e46-409f-ba5b-79b2a922847a/ogi-hertz.jpg?auto=webp&fit=crop&height=675&width=1200
Source link