{"id":181,"date":"2024-09-10T09:48:35","date_gmt":"2024-09-10T09:48:35","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=181"},"modified":"2024-09-10T09:48:35","modified_gmt":"2024-09-10T09:48:35","slug":"avis-reports-data-breach-affecting-300000-customers","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=181","title":{"rendered":"Avis reports data breach affecting 300,000 customers"},"content":{"rendered":"<div>\n<div class=\"grid grid--cols-10@md grid--cols-8@lg article-column\">\n<div class=\"col-12 col-10@md col-6@lg col-start-3@lg\">\n<div class=\"article-column__content\">\n<div class=\"container\"><\/div>\n<p>Car rental company Avis has informed around 300,000 of its customers in the US that their personal data has been stolen in a cyberattack.<\/p>\n<p>The company detected unauthorized access to one of its business applications at the beginning of August. \u201cAfter becoming aware of the incident, we immediately took steps to end the unauthorized access,\u201d Avis told customers in a \u201c<a href=\"https:\/\/oag.ca.gov\/system\/files\/Avis%20-%20Individual%20Notification%20Sample%20%2809%2004%2024%29.pdf\" target=\"_blank\" rel=\"noopener\">Data Breach Notification Letter<\/a>\u201c (PDF), a sample of which it registered with the California prosecutor\u2019s office.<\/p>\n<p>It has initiated an investigation in cooperation with security experts and law enforcement authorities, it said.<\/p>\n<h2 class=\"wp-block-heading\">Breach notification with Equifax subscription<\/h2>\n<p>In the letter, Avis promised customers \u201cextended protective measures\u201d for the affected application and improvements in terms <a href=\"https:\/\/www.csoonline.com\/de\/a\/was-ist-dark-web-monitoring,3674533\" target=\"_blank\" rel=\"noopener\">of security monitoring<\/a>. In addition, the car rental giant is also offering affected customers a free annual subscription to Equifax\u2019s \u201cCredit Watch Gold\u201d service, which can assist in cases of <a href=\"https:\/\/www.csoonline.com\/de\/a\/privilegierte-identitaeten-ein-beliebtes-ziel-von-cyberkriminellen,3680957\" target=\"_blank\" rel=\"noopener\">identity theft<\/a>. \u201cWe sincerely apologize that this incident took place,\u201d the company concluded its Data Breach Notification Letter.<\/p>\n<p>Another company <a href=\"https:\/\/www.maine.gov\/agviewer\/content\/ag\/985235c7-cb95-4be2-8792-a1252b4f8318\/ccfece24-0b9c-4251-a89b-0fd68ecbda12.html\" target=\"_blank\" rel=\"noopener\">filing with the Maine State Attorney\u2019s Office<\/a> showed that a total of 299,006 customers were affected by the data breach, which Avis described as \u201cinsider wrongdoing.\u201d<\/p>\n<p>The type of personal data stolen in the attack was described by another <a href=\"https:\/\/www.iowaattorneygeneral.gov\/media\/cms\/952024_Avis_Rent_A_Car_System_LLC_A7F18A36DEE2B.pdf\">letter from Avis\u2019 law firm to the Iowa Attorney General\u2019s office<\/a>. It said the scope of the stolen data varies depending on the customer, but the following information is potentially affected:<\/p>\n<p>Name<\/p>\n<p>E-mail address<\/p>\n<p>Telephone number<\/p>\n<p>Date of birth<\/p>\n<p>Credit card number and expiration date<\/p>\n<p>Driver\u2019s license number.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>Car rental company Avis has informed around 300,000 of its customers in the US that their personal data has been stolen in a cyberattack. The company detected unauthorized access to one of its business applications at the beginning of August. \u201cAfter becoming aware of the incident, we immediately took steps to end the unauthorized access,\u201d [&hellip;]<\/p>\n","protected":false},"author":0,"featured_media":182,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-181","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/181"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=181"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/181\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/182"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=181"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=181"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=181"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}