- Nascar presents reports with state regulators confirming the April 2025 attack
- He didn’t say how many people were affected
- The company offers free credit monitoring for affected victims.
Nascar has confirmed that he suffered a cyber attack and a data violation in April 2025 that saw personal information of fans of allegedly stolen races.
The organization presented data violation reports to general prosecutors in multiple US states, describing what had happened and how it responded, noting that the attack began on March 31, 2025, and was seen and detained on April 3.
During that period, the company said it assured its network, brought third -party cybersecurity experts to analyze the incident and notified the application of the appropriate law.
The subsequent research determined that the attackers stole the names of the people and social security numbers (SSN).
Medusa claims responsibility
Although Nascar did not discuss the nature of the incident, or the identity of the threat actors, ransomware operators known as Medusa had claimed responsibility several months ago.
In April 2025, the group added Nascar to its data leakage site and demanded $ 4 million in rescue, The record He informed, declaring the deadline for payment expired on April 19.
It is unknown if Nascar paid the demand for rescue or not, but there is no evidence that the data was filtered to the public.
Medusa is an active threat actor with numerous high -profile victims, including Toyota Financial Services (TFS), which was beaten in November 2023, the public schools of Minneapolis (MPS), attacked in February 2023 and Filippine Health Insurance Corporation (Philhealth), which suffered an incident in September 2023.
Medusa is involved in the usual double -extension tactics, exfiltrating confidential files of the system before encrypting the entire network. In this way, if the victim decides to restore the archives of a backup, the group can threaten to release them on the Internet, which could bring regulatory fines, demands for collective action and more.
It is not known exactly how many people were affected by the attack, but the victims have been offered free credit monitoring services for a year, through Experian IdentityWorks.
