- Cybercriminal advertises stolen archive on an underground forum
- It was confirmed to have come from car rental giant Europcar
- The company is now investigating and notifying the customers
Europcar has reportedly suffered a data breach in which it lost sensitive data on hundreds of thousands of customers.
A threat actor with the alias ‘Europcar’ posted a new thread in an underground forum, claiming to have “successfully breached Europcar’s systems and obtained all their GitLab repositories”.
As a result, the attacker took more than 9,000 SQL files from the repository, containing sensitive personal data, as well as at least 269 .ENV files, which are used to store configuration settings for apps, and more.