Cactus gang hacks Asbury Automotive Group, confirmed in April

The Cactus Ransomware Group has claimed responsibility for compromisint Asbury Automotive Group. Asbury Automotive is a prominent automotive retail and service company in the United States.

The attack, reported on Cactus' PR website, exposed extensive data, including 62 GB of sensitive information like:

• passports,
• driver’s licenses,
• private financial data,

More than 14,000 individuals are exposed with this leak. Asbury has not provided further information on the leak, nor how it's going to address the incident.

Update - as of 25th April 2024, the Asbury Automotive Group, confirmed the data breach. Asbury reports that they noticed suspicious activity on December 25, 2023, which led to an investigation with the support of a cybersecurity firm and subsequent notification to law enforcement.

The breach resulted in the exposure of sensitive personal information belonging to an unspecified number of individuals. The types of data accessed include

• names,
• driver’s license numbers,
• Social Security numbers.

Following the completion of the investigation on March 25, 2024, Asbury Automotive Group began the process of sending out notification letters to affected consumers on April 24, 2024.