Major Breach at Volvo Group Exposes 870,000 Employee Records
On September 25, 2025, Volvo Group North America experienced a substantial data breach linked to a ransomware attack on its HR software vendor, Miljödata. This incident compromised the sensitive information of approximately 870,000 employees, including names and Social Security numbers, raising serious concerns about personal data security in the automotive sector. The breach underscores the vulnerabilities inherent in third-party vendor relationships, as attackers increasingly target less secure partners to access larger organizations. The breach highlights the urgent need for organizations to rigorously evaluate their vendor security protocols and ensure robust incident response strategies are in place. As the landscape of cyber threats continues to evolve, organizations must prioritize data protection and consider the implications of such breaches on their reputation and operational integrity.
Also In Security Today
- Jaguar Land Rover (JLR) was hit by a cyber attack that disrupted production, reportedly linked to the threat group Scattered Spider. This incident highlights the vulnerabilities in operational technology (OT) systems.
- Stellantis disclosed a breach that resulted in hackers accessing 18 million customer service records via compromised Salesforce integration, raising questions about the security of cloud services.
- Critical vulnerabilities were discovered in Cisco Secure Firewalls, along with a zero-day vulnerability in Google Chrome that is being actively exploited for remote code execution, emphasizing the need for timely patching and updates.
- An increase in cyber threats across multiple sectors has been noted, particularly through supply chain vulnerabilities, indicating a need for heightened vigilance and improved security frameworks across industries.