Auto-maker Nissan sent out a breach notification letter to approximately 18,000 people, notifying them that personal information had been leaked through a third-party vendor. The company learned that names, birth dates, and account numbers for a lender that finances Nissan automobiles were compromised. Social security numbers and credit card information was not included in the breach.
In the breach notification letter, Nissan described the incident as follows:
The impacted third-party service provider provides software development services to Nissan. Nissan provided certain information to this service provider for processing during the testing of the software.
On June 21, 2022, Nissan received notice that certain data it provided for software testing had inadvertently been exposed by the third-party service provider. During our investigation, on September 26, 2022, we determined that this incident likely resulted in unauthorized access or acquisition of our data, including some personal information belonging to Nissan customers. Specifically, the data embedded within the code during software testing was unintentionally and temporarily stored in a cloud-based public…
