-
Nissan, a Japanese car manufacturer, has allegedly experienced an internal data breach of its internal data systems.
-
The notorious Everest ransomware group claims responsibility for the breach, with screenshots of over 900GB of data on the dark web, and threats to push the data public in a few days if it doesn’t receive ransom payment.
-
Nissan records multiple data breaches in recent years; will the trend ever end?
Japanese automobile manufacturing giant, Nissan Motor Corporation, allegedly faced a breach of its internal data. The news spread following a listing on the dark web by the notorious Everest ransomware group, claiming to be responsible.
Moreover, the hacker group threatened to release the entire information to public sources if the car manufacturer fails to pay the ransom within a few days.
Nissan Reportedly Faces a Data Breach
Nissan automobile manufacturer, is reportedly the latest victim of a data breach in the digital world. The report noted that over 900 gigabytes of the company’s internal data have been exfiltrated by the notorious Everest ransomware group.
The hacker group released some screenshots that detailed the exfiltrated data, which contains 60,000 txt files, 17,000 csv files, 31,000 zip files, and 47,000 xls files. The list of files and folders reflects the company’s business data, including sales and marketing details, validation reports, dealers’ orders, dealers’ information, warranty analysis, communications, etc.
Also, the screenshots showed operational details of Nissan Motor Corporation’s Canadian business, and dealership statements for both Nissan and Infiniti, its luxury car brand.
Everest Ransomware Group Accepts Nissan’s Cyberattack
The notorious Everest ransomware group has claimed to be responsible for the recent cyberattack on Nissan’s internal data. In its recent post on the dark web, the gang revealed that it intercepted over 900GB of personal data from the company’s internal system.
According to the post, Everest threatened to push the data list to public sources, in less than 4 days from the press time, if Nissan fails to pay a ransom to the group.
Everest ransomware is popular in the digital world for its numerous cyberattacks and demands for ransom. The assumed Russian-speaking hacker gang utilizes diverse access approaches in its attacks. These include exploits of weak and/or stolen credentials, remote access tools, insider recruitment, etc.
Its involvement in Nissan’s reported breach followed a few days after the hacker group mentioned its attack on Chrysler, another car manufacturer. In its statement on its dark web platform, Everest indicated that it stole about 1,088 gigabytes of data from Chrysler.
Nissan’s Records of Multiple Data Breaches
The recent alleged attack on Nissan isn’t the first of its kind. The automobile manufacturing giant has recorded multiple similar breaches in the past few years.
In December 2025, Nissan witnessed a compromise of some of its customers’ personal data via a collaboration with Red Hat, a technology firm. In its confirmatory statement, the automobile giant revealed that about 21,000 customers of its sales arm, Nissan Fukuoka Sales, suffered a breach of their personal data as hackers gained unauthorized access to Red Hat’s internal system. The names, phone numbers, addresses, and email addresses of customers are part of this data breach.
The Akira Ransomware Group has also broken into Nissan’s Australian and New Zealand operations in 2024. The breach, which was on the company’s local IT servers, compromised the data of almost 100,000 people, including dealers, customers, and employees of Nissan.
An earlier attack in the same year on Nissan’s North American arm saw the compromise of personal data of over 53,000 staff and some of the company’s sensitive details.
The recurring incidents of data breaches in the company call for speculation from cybersecurity enthusiasts about whether the trend will ever end.
