THE Mazda data breach involved unauthorized access to a management system used for warehouse operations and occurred after security defects in the system were exploited, with the incident discovered in mid-December. According to SecurityWeek, 692 records were compromised, including internal IDs, names, email addresses, company names and business partner IDs.
The information affected belongs to Mazda employees and group companies as well as business partners, while customer data was not impacted because it was not stored in the hacked system. Mazda has said the breach was caused by a third party exploiting security vulnerabilities and has since applied patches, revised access policies, and restricted internet access.
In November, Mazda had previously told SecurityWeek it had been targeted in an Oracle E-Business Suite hacking campaign but found no data leakage at that time.