Hyundai AutoEver Confirms Data Breach Exposing Users’ Personal Information and SSNs

Hyundai AutoEver America has disclosed a significant data breach that compromised sensitive personal information of customers, including Social Security numbers and driver’s license details.

The cybersecurity incident highlights growing concerns about data protection in the automotive technology sector.​

Hyundai AutoEver America discovered the cyber incident on March 1, 2025, when unauthorized activity was detected within its information technology environment.

The company immediately launched an investigation with external cybersecurity experts to assess the full scope of the breach.

Forensic analysis revealed that unauthorized access began on February 22, 2025, and the last observed malicious activity occurred on March 2, 2025, spanning approximately 9 days of potential data exposure.​

Compromised Personal Information

The breach exposed a range of sensitive personal data belonging to affected individuals. According to the official breach notification, compromised information included full names along with additional data elements that could enable identity theft.

While the notice template does not specify exact numbers, the company confirmed that Rhode Island residents were among those impacted.

The exposed data includes Social Security numbers, driver’s license information, and other personally identifiable information that could be exploited for fraudulent purposes.​

Upon discovering the intrusion, Hyundai AutoEver immediately terminated the unauthorized third party’s access to affected systems and engaged specialized cybersecurity firms to conduct a comprehensive investigation.

The company also coordinated with law enforcement agencies throughout the response process. The extensive nature of the incident required significant time and resources to analyze forensic data and determine which information was accessed.​

Hyundai AutoEver is offering affected customers complimentary two-year credit monitoring services through Epiq Privacy Solutions, including three-bureau credit monitoring and identity protection.

Affected individuals are encouraged to remain vigilant by monitoring account statements, reviewing credit reports regularly, and considering fraud alerts or security freezes to prevent unauthorized credit applications.

Hyundai Senior Group Manager Ira Gabriel said that “Hyundai AutoEver America, an IT vendor that manages certain Hyundai Motor America employee systems, experienced an incident to that area of business that impacted employment-related data and primarily affected current and former employees of Hyundai AutoEver America and Hyundai Motor America. Approximately 2,000 current and former employees were notified of the incident. The 2.7 million figure that is cited in many media articles has no relation to the actual security incident”.

“No Hyundai consumer data was exposed, and no Hyundai Motor America customer information or Bluelink driver data was compromised”.

Follow us on Google News, LinkedIn, and X for daily cybersecurity updates. Contact us to feature your stories.