- Nissan confirms supply chain breach through Red Hat, exposing data of ~21,000 customers
- The stolen information includes names, addresses, phone numbers and partial emails; no financial data compromised
- They blame Crimson Collective; ShinyHunters posted sample files on extortion platform
Japanese car giant Nissan has confirmed the loss of sensitive data of thousands of people as a result of a third-party attack on the supply chain.
In a press release, the company said that the recent attack on Red Hat also affected its customers, as Nissan commissioned the latter to develop a customer management system for one of its sales companies: Nissan Fukuoka Sales Co.
In late September, Red Hat detected unauthorized access that was later determined to have resulted in the theft of hundreds of gigabytes of sensitive data from 28,000 private GitLab repositories.
Crimson Collective and ShinyHunters
Red Hat expelled the attackers and notified Nissan in early October 2025, saying that approximately 21,000 customers, who purchased vehicles or received services, had addresses, names, phone numbers and parts of the email address compromised.
Customer-related information used in sales activities was also stolen, but not credit card information or other banking information.
“We sincerely apologize for any inconvenience and concern this may have caused our customers and related parties,” Nissan said in a machine-translated announcement, emphasizing that it will contact those affected.
The criminals took everything they found on the compromised servers, Nissan explained, emphasizing that “there is no risk of further data leaks.”
The company says there has been no evidence so far that the stolen files have been misused, but it urged its customers to be wary of incoming emails or other communications, especially those purporting to come from the automaker.
He did not name the attackers, but beepcomputer claims it was made by a group called Crimson Collective. Shortly after, the infamous ShinyHunters also hosted a sample of the stolen files on their extortion platform.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
