Nissan confirms ransomware attack exposed data of 100,000 people.
That is not good… but it could have been much, much worse!
Last September, Firefox analyzed the privacy policies of 25 car makers to see what type of data was being harvested, and the worst of all was Nissan who is gathering:
Sensitive personal information, including driver’s license number, national or state identification number, citizenship status, immigration status, race, national origin, religious or philosophical beliefs, sexual orientation, sexual activity, precise geolocation, health diagnosis data, and genetic information.
Fortunately, the information in the current breach “only” concerns Medicare cards, driver’s licenses, passports, tax file numbers, loan-related documents, employment details, and dates of birth. But imagine a second what would be the implication if all the private information Nissan had about its customers were stolen.
The concern now is not only about what data is going to be taking and with what purpose, but more what will happen if this becomes public. Last October, a hacker stole information about the users of 23andMe and published the list of 1 million Jews.
We can only imagine the terrible consequences that these types of hack & leaks incident can have and it is not the RGPD & co that seems to be limiting the impact….
Read the full article here.
