Security News > 2022 > September > U-Haul discloses data breach exposing customer driver licenses
Moving and storage giant U-Haul International disclosed a data breach after a customer contract search tool was hacked to access customers' names and driver's license information.
As the company revealed notification letters sent to impacted individuals on Friday, it discovered on August 1, following an incident investigation, attackers accessed some customers' rental contracts between November 5, 2021, and April 5, 2022.
"After an in-depth analysis, our investigation determined on September 7, 2022, the accessed information includes your name and driver's license or state identification number," U-Haul told affected customers.
The attacker accessed the U-Haul rental contracts search portal after compromising two "Unique passwords."
"The investigation determined an unauthorized person accessed the customer contract search tool and some customer contracts," the moving giant added.
"None of our financial, payment processing or U-Haul email systems were involved; the access was limited to the customer contract search tool."
News URL
Related news
- Advance Auto Parts confirms data breach exposed employee information (source)
- Coding error in forgotten API blamed for massive data breach (source)
- Neiman Marcus confirms data breach after Snowflake account hack (source)
- Ticketmaster sends notifications about recent massive data breach (source)
- Dairy giant Agropur says data breach exposed customer info (source)
- Prudential Financial now says 2.5 million impacted by data breach (source)
- Affirm says cardholders impacted by Evolve Bank data breach (source)
- Formula 1 governing body discloses data breach after email hacks (source)
- HealthEquity data breach exposes protected health information (source)
- Not-so-OpenAI allegedly never bothered to report 2023 data breach (source)