Data breach hits car sale firm
A small number of Eagers Automotive customers have had their personal data stolen in a cyber attack on the nation’s largest car seller.
Eagers said a third party accessed data from the company’s servers in the cyber incident which disrupted parts of its operations across Australia and New Zealand.
“The company can now confirm the incident involved unauthorised access to parts of the company’s IT systems by a third party which accessed some data from our servers,” Eagers has told the ASX.
“Based on investigations todate, the company is in the process of notifying a small number of individuals identified who may face serious risk of data misuse.
“The company is committed to providing these affected individuals with the support and assistance they need as the company works to respond to this incident.”
Eagers has not revealed the number of people whose data has been stolen.
Eagers said if it detects any further personal information has been impacted, the affected individuals will be notified.
The cyber attack left Eagers unable to finalise the sale of some new vehicles ready for delivery, as well as affecting some of its service and parts operations.
“On detecting the incident, the company took prompt action to isolate potentially impacted systems and engaged external experts to assist with managing the company’s response to the incident,” Eagers said.
“An investigation was launched at the earliest opportunity and Eagers Automotive continues to work to determine the extent of the incident and the impact to personal information.”
The nation’s largest car dealership group said the extent of the outage resulting from the cyber incident varied across regions and business units. The group has more than 300 dealerships across Australia, in all states and territories as well as in New Zealand, and owns Australia’s largest national fixed price pre-owned automotive business, easyauto123.