Hackers compromise AutoNation websites, capture payment card data, other info

Share this article:

National automobile retailer AutoNation is notifying an undisclosed number of customers that their payment card data, as well as other information, may have been captured by hackers that compromised AutoNation websites hosted and operated by TradeMotion.

How many victims? Undisclosed. 

What type of personal information? Names, addresses, phone numbers, email addresses and payment card information.

What happened? Hackers were able to capture personal information after compromising AutoNation websites hosted and operated by TradeMotion.

What was the response? TradeMotion contacted the FBI and an investigation is ongoing. TradeMotion stated that the software used by the hackers to capture the information has been removed. TradeMotion is conducting penetration testing and is monitoring its systems for ongoing activity. All impacted individuals are being notified, and offered a free year of identity theft protection services. AutoNation is no longer processing card payments through TradeMotion.

Details: TradeMotion notified AutoNation on May 6. The hackers may have had access to the information from March 5 to May 2.

Source: doj.nh.gov, “Breach Notification Letter,” May 26, 2014.

Share this article:

Sign up to our newsletters

POLL

More in The Data Breach Blog

Thousands had data on computers stolen from California medical office

Bay Area Pain Medical Associates notified about 2,780 patients that their data was on computers stolen from its California offices.

Subcontractor breach impacts 1,700 in Dominion Resources employee wellness plan

About 1,700 people in the Dominion Resources employee wellness program have been notified that their data was accessed in a breach.

Document posted to California city website, employee data accessed

In California, a document posted to the City of Encinitas website contained data on hundreds of current and former city staffers.