Stellantis confirms data breach involving customers' contact information

Stellantis, the parent company of several auto brands including Dodge, Ram, and Chrysler, has confirmed a data breach that exposed customers' contact information. The breach occurred on a third-party service provider's platform that supports Stellantis' North American customer service operations. According to Stellantis, the breach did not involve financial or sensitive personal data, as that information is not stored on the affected platform. The company has activated its incident response protocols, launched an investigation, and taken measures to contain and mitigate the situation. Stellantis has also notified the appropriate authorities and is directly informing affected customers. The automaker has not disclosed the specific types of contact information involved or the number of customers affected. It has also not indicated whether it will offer privacy or credit protection services to the affected customers. A group called ShinyHunters has claimed responsibility for the breach, stating that they obtained more than 18 million records containing contact details and names from Stellantis' Salesforce instance.