Over the next few weeks, Nissan Oceania will make contact with around 100,000 people in Australia and New Zealand whose data was pilfered in a December 2023 attack on its systems – perhaps by the Akira ransomware gang.
Some of those affected by the breach were customers of finance services that Nissan operated and branded for rival automakers Mitsubishi, Renault, Infiniti, LDV, and RAM. “We know this will be difficult news for people to receive, and we sincerely apologize to our community for any concerns or distress it may cause,” Nissan said in a statement posted to its website.
Individuals in both territories will also have access to IDCARE’s services for protecting against the misuse of stolen data, and those who need ID documents replaced can claim the cost back with Nissan Oceania.
Data supposedly belonging to Nissan Oceania is available to download via Akira’s website, suggesting that if ransomware was involved the automaker refused to pay.
Akira claims to have stolen 100 GB worth of data, including personal data.
El Reg sent a request for comment to Nissan Oceania to seek comment on the possibility ransomware caused this incident, but it did not immediately respond.
