Hertz has informed customers of a data breach affecting personal information, including driver’s licenses and payment details, stemming from a cyberattack on a vendor, Cleo Software, which occurred between October and December 2024. While the breach impacted thousands of customers in regions such as Australia, the EU, and the UK, the total number affected remains unclear. The hack is linked to the Clop ransomware gang, known for exploiting vulnerabilities in file transfer products used by Cleo, leading to significant data theft from many companies.
The stolen data varies by region, but largely includes Hertz customer names, dates of birth, contact information, driver's licenses, payment card information, and workers' compensation claims.
Hertz attributed the breach to a vendor, Cleo Software, which was previously targeted in a mass-hacking campaign by a Russia-linked ransomware gang.
Collection
[
|
...
]