BMW Hong Kong alleged data breach exposes 14k customers

BMW Hong Kong has reportedly experienced a data breach affecting approximately 14,000 customers, with the incident reported on Twitter.

Initial reports suggest a threat actor known as “888” may be responsible for the breach, though the exact circumstances remain unclear. This raises concerns about the vulnerabilities that may have been exploited in BMW Hong Kong’s data security infrastructure.

The breach has allegedly exposed personal information including:

• Surnames
• First names
• Mobile numbers
• SMS opt-out preferences

This set of information could potentially be used for targeted phishing attack. No details are disclosed about the nature of the attack.

BMW Hong Kong has yet to release an official statement regarding the breach.

Customers are advised to monitor their personal information for signs of unauthorized use, change passwords, enable two-factor authentication where possible, and be cautious of unsolicited communications claiming to be from BMW.