Europcar, a popular car rental company, has recently fallen victim to a cyberattack, resulting in the theft of customer data and other confidential information. According to a report by Bleeping Computer, traces of the attack have surfaced in the Darknet, revealing that the attacker infiltrated Europcar’s Gitlab repositories and obtained data from up to 200,000 customers, along with the source code for Android and iOS applications.
The stolen dataset reportedly consists of 37 gigabytes of backups and details about the company’s cloud infrastructure and internal applications. As proof of the attack, the criminal has shared screenshots of snippets from the acquired source code, which also include login credentials. The attacker is now attempting to extort the car rental company by threatening to release the stolen data.
Investigations into the attack are still ongoing, and it remains unclear how the perpetrator managed to gain access to the repositories. Europcar has had a history of being targeted by cybercriminals, with a previous incident in early 2024 where a hacker claimed to have obtained data from 50 million Europcar customers. However, the car rental company denied the authenticity of the data at that time, stating that it was fabricated.
The latest cyberattack on Europcar has raised concerns about the security of customer data and the vulnerability of companies to such incidents. With the increasing frequency of cyber threats, businesses need to strengthen their cybersecurity measures to protect sensitive information and prevent unauthorized access to their systems.
Cybersecurity experts emphasize the importance of implementing robust security protocols, regularly updating software and systems, and educating employees about the risks of cyber attacks. Companies should also consider investing in advanced threat detection technologies and conducting thorough security assessments to identify and mitigate potential vulnerabilities.
In response to the cyberattack, Europcar has assured customers that it is taking steps to enhance its cybersecurity defenses and prevent similar incidents in the future. The company is working closely with law enforcement authorities and cybersecurity professionals to investigate the breach and identify the individuals responsible.
As the investigation continues, Europcar remains focused on safeguarding customer data and upholding the trust and confidence of its clients. The incident serves as a stark reminder of the growing threat posed by cybercriminals and the critical need for organizations to remain vigilant and proactive in protecting their digital assets.