- Nascar submitted relations with state regulators confirming the attack on April 2025
- He didn’t say how many people have been affected
- The company offers free monitoring of credits for assigned victims
Nascar confirmed that she had undergone a cyber attack and a data violation in April 2025 which saw personal information about the racing fans who have stolen.
The organization has filed data violation reports to general prosecutors in several American states, describing what had happened and how it replied, noting that the attack began on March 31, 2025 and was spotted – and stopped – on April 3.
During this period, the company said it has secured its network, brought in third party cybersecurity experts to analyze the incident and informed the appropriate law enforcement.
The subsequent survey determined that the attackers stole the names of the people and the social security numbers (SSN).
Medusa claims responsibility
Although Nascar has not discussed the nature of the incident, nor the identity of the threat actors, the ransomware operators known as the Medusa had claimed responsibility several months ago.
In April 2025, the group added Nascar to its data leak site and asked for $ 4 million in ransom, The record Reported, indicating that the payment deadline expired on April 19.
It is not known if Nascar paid for ransom or not, but there is no evidence that the data has flowed to the public.
Medusa is an active threat player with many high -level victims, notably Toyota Financial Services (TFS), which was struck in November 2023, the public schools of Minneapolis (MPS), targeted in February 2023, and Philippine Health Insurance Corporation (Philhealth), who underwent an incident in September 2023.
Medusa engages in the usual double exposure tactics, exfiltrating sensitive system files before encrypting the entire network. In this way, if the victim decides to restore the files of a safeguard, the group can threaten to release them on the Internet, which could lead to regulatory fines, collective appeals, etc.
It is not known exactly how many people were affected by the attack, but the victims received free credit supervision services for a year, through Experian Identityworks.
