- Mazda confirms December 2025 violation through warehouse management system
- Hundreds of employee and partner records exposed, including IDs, names and emails
- Unaffected customers; Company strengthening security after exploiting vulnerabilities
Hackers broke into Japanese carmaker Mazda and used their access to extract sensitive data from employees and partners, the company confirmed.
In a breach notification letter, the Japanese automaker said that in mid-December 2025 it found “traces of unauthorized access” to a management system used to operate certain warehouses used to store parts purchased in Thailand.
As soon as the breach was detected, Mazda did what most companies do in such cases: it secured its infrastructure, notified relevant authorities and data watchdogs, including the Personal Information Protection Commission, and launched an investigation with the help of third-party cybersecurity experts.
Article continues below.
No bragging rights
The investigation determined a “possibility that some of the personal information of the company’s employees, its group companies, as well as business partners” may have been exposed. That part includes 692 records, such as user IDs, names, email addresses, company names and business partner IDs issued by Mazda.
Mazda also emphasized that customers’ personal information was not accessed as it was not stored on the affected systems in the first place.
“To prevent a repeat, Mazda will continue to strengthen its information security framework, including better monitoring of external access and strengthened communication controls,” the company added.
Mazda did not say who the threat actors were and did not discuss the nature of the attack. He did say that the hackers broke in by abusing “security vulnerabilities in the systems that were exploited.”
So far, no cybercriminal group has claimed responsibility for the attack, and given that only 692 records were exposed, it is likely that no one will. Cybercriminals who leak just a handful of data are often ridiculed for it, especially when the data doesn’t include more than the basics “names, email addresses.”
Through beepcomputer
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
