- Nissan confirms supply chain breach via Red Hat, exposing data of approximately 21,000 customers
- Stolen information includes names, addresses, phone numbers and partial emails; no financial data compromised
- Crimson Collective blamed; ShinyHunters posted sample files on extortion platform
Japanese auto giant Nissan has confirmed it lost sensitive data on thousands of people following a third-party supply chain attack.
In a press release, the company said that the recent attack on Red Hat also affected its customers, since the latter was commissioned by Nissan to develop a customer management system for one of its sales companies – Nissan Fukuoka Sales Co.
In late September, Red Hat detected unauthorized access that, as was later determined, resulted in the theft of hundreds of gigabytes of sensitive data from 28,000 private GitLab repositories.
Crimson Collective and ShinyHunters
Red Hat ousted the attackers and notified Nissan in early October 2025, saying that approximately 21,000 customers, who purchased vehicles or received services, had their addresses, names, phone numbers and email address parts compromised.
Customer information used in sales activities was also stolen, but not credit card information and other banking data.
“We sincerely apologize for any inconvenience and concern this may have caused our customers and related parties,” Nissan said in a machine-translated statement, and stressed that it would contact those affected.
The crooks took everything they found on the compromised servers, Nissan further explained, stressing that there is “no risk of additional data leakage”.
The company says that so far there is no evidence that the stolen files have been misused, but it has urged customers to be wary of incoming emails or other communications, especially those claiming to come from the automaker.
He did not name the attackers, but BeepComputer claims this was done by a group called Crimson Collective. Shortly after, the infamous ShinyHunters also hosted a sample of the stolen files on their extortion platform.
The best antivirus for every budget
Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds. Make sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp Also.
