Cyberattacks surge against auto industry

The automotive sector is facing a wave of cyberattacks, with Renault UK the latest victim after confirming that customer data was stolen in a breach involving a third-party supplier.

The compromised information includes names, addresses, dates of birth, gender, phone numbers, vehicle identification numbers and registration details, the company said.

“This is a dangerous incident because the compromised data is perfectly suited for phishing attacks and identity theft,” said Ignas Valancius, head of engineering at cybersecurity firm NordPass. He warned that scammers could impersonate Renault representatives, law enforcement or lawyers offering compensation to trick victims into sharing more data or money.

Valancius said Renault’s case is not isolated. The automotive industry has faced multiple high-profile breaches this year, exposing both customer and employee data.

“It seems like threat actors are testing the maturity of the automotive industry’s cybersecurity,” he said, noting risks to business continuity and personal information.

Recent incidents include a breach at Swedish HR software supplier Miljödata that exposed Volvo North America employee data, and a separate attack on Stellantis, which disclosed that customer contact details were compromised through a third-party platform. German manufacturers have also been hit, with BMW targeted by the Everest ransomware group and Volkswagen suffering a breach that exposed data on about 800,000 electric vehicle owners. Jaguar Land Rover was also attacked earlier this year.

In the United States, hackers breached auto dealership software company Motility, stealing personal information on nearly 800,000 people before encrypting its systems. Another leak from a driver compliance platform exposed Social Security numbers and driver’s licences belonging to more than 10,000 Texas truckers.

“These are just a few of the more visible examples of the ongoing assault,” Valancius said.

He added that luxury brands appear to be prime targets in 2025, raising the risk of spear phishing and other targeted attacks. Personally identifiable data is considered highly sensitive, and leaks can lead to identity theft, fraudulent loans or even misuse of credentials on illicit websites.

Image credit: Depositphotos.com