Malware
U-Haul Reveals Cybercriminal Breached Customer Records with Stolen Credentials: Protect Your Data Now
U-Haul has revealed that a hacker gained unauthorized access to customers’ personal information using stolen login credentials. The company has yet to disclose the number of affected customers but has confirmed that no financial data was exposed. U-Haul is offering free credit monitoring services to those impacted by the breach.
Picture this: you’re moving across the country and you’ve rented a truck from U-Haul, a well-known American company that offers moving equipment and storage space. With over 19,500 employees and an annual revenue of more than $4.5 billion, you trust them with your precious belongings. Unfortunately, we’ve got some unsettling news for you. U-Haul recently experienced a cybersecurity breach that exposed some of their customers’ personal information.
What Happened in the U-Haul Data Breach?
On December 5, 2023, U-Haul discovered that a hacker had managed to gain unauthorized access to their internal system for dealers and team members. This system is used to track customer reservations and view customer records. The company has since been reaching out to customers who were affected by the breach to inform them of the situation.
“U-Haul learned on December 5, 2023, that legitimate credentials were used by an unauthorized party to access a system U-Haul Dealers and Team Members use to track customer reservations and view customer records.” – U-Haul
What Information Was Exposed?
The hacker was able to access specific customer records, including full names, dates of birth, and driver’s license numbers. Thankfully, the breached system did not include access to payment card data, so your financial information should be safe. However, the exposure of personal information is still cause for concern.
What Is U-Haul Doing to Address the Breach?
Since discovering the breach, U-Haul has taken several actions to protect its customers and prevent similar incidents from happening in the future. They have reset passwords for all affected accounts and implemented additional security safeguards and controls. Furthermore, customers who received the data breach notification will be offered a one-year identity theft protection service, complete with instructions on how to enroll.
Is This the First Time U-Haul Has Been Breached?
Unfortunately, this isn’t the first time U-Haul has faced a cybersecurity issue. In September 2022, the company disclosed another breach in which attackers accessed customer rental contracts between November 2021 and April 2022. In that instance, hackers also used compromised account credentials to access U-Haul’s internal portal.
Stay Informed and Stay Safe
This latest U-Haul data breach serves as a reminder that no company, regardless of its size or reputation, is immune to cyberattacks. It’s crucial for all of us to stay informed and take necessary precautions to protect our personal information. As your go-to IT Services, we’re here to help you navigate the ever-changing landscape of cybersecurity. Don’t hesitate to get in touch with us to learn more or to discuss how we can help keep you and your information safe.