Security News > 2022 > September > U-Haul discloses data breach exposing customer driver licenses
Moving and storage giant U-Haul International disclosed a data breach after a customer contract search tool was hacked to access customers' names and driver's license information.
As the company revealed notification letters sent to impacted individuals on Friday, it discovered on August 1, following an incident investigation, attackers accessed some customers' rental contracts between November 5, 2021, and April 5, 2022.
"After an in-depth analysis, our investigation determined on September 7, 2022, the accessed information includes your name and driver's license or state identification number," U-Haul told affected customers.
The attacker accessed the U-Haul rental contracts search portal after compromising two "Unique passwords."
"The investigation determined an unauthorized person accessed the customer contract search tool and some customer contracts," the moving giant added.
"None of our financial, payment processing or U-Haul email systems were involved; the access was limited to the customer contract search tool."
News URL
Related news
- Otelier data breach exposes info, hotel reservations of millions (source)
- PayPal to pay $2 million settlement over 2022 data breach (source)
- UnitedHealth now says 190 million impacted by 2024 data breach (source)
- PowerSchool starts notifying victims of massive data breach (source)
- US healthcare provider data breach impacts 1 million patients (source)
- US healthcare provider data breach impacts 1 million patients (source)
- Globe Life data breach may impact an additional 850,000 clients (source)
- GrubHub data breach impacts customers, drivers, and merchants (source)
- HPE notifies employees of data breach after Russian Office 365 hack (source)
- Fintech giant Finastra notifies victims of October data breach (source)