What happened in the Volkswagen Group cybersecurity incident?

Volkswagen Group confirmed awareness of a cybersecurity incident after the 8Base ransomware group claimed it successfully stole data from the German automotive giant. On September 23, 2024, the 8Base group claimed to have stolen confidential files and issued threats of public release by September 26, 2024.

Was Volkswagen's core IT infrastructure affected by the breach?

Volkswagen maintains that its core IT infrastructure was not affected by the breach. However, the wording focusing on core infrastructure leaves open the possibility of a breach at a third-party, partner, or supply chain level.

What type of data was allegedly stolen from Volkswagen?

The allegedly stolen data includes invoices and receipts, accounting documents, personal employee files, employment contracts, certificates, personnel records, numerous confidentiality agreements, and financial records potentially spanning Volkswagen's global operations.

Who was behind the Volkswagen data breach?

The 8Base ransomware group claimed responsibility for the attack. They listed the allegedly stolen data on their dark web leak site after their deadline of September 26, 2024, passed.

When did the Volkswagen data breach occur?

The 8Base group made their claim on September 23, 2024, and set a deadline of September 26, 2024, for public release. The group subsequently listed the allegedly stolen data on its dark web leak site after the deadline passed.

How many people were affected by the Volkswagen data breach?

The number of affected individuals has not been disclosed by Volkswagen.

Has Volkswagen disclosed the nature of the cyberattack?

No, Volkswagen has not disclosed the nature of the attack or confirmed specific details about the breach beyond acknowledging awareness of the incident.

Incident

Volkswagen Group confirms cybersecurity incident after 8Base ransomware gang claims data theft

published: Oct. 19, 2025

Learn More

Volkswagen Group, has confirmed awareness of a cybersecurity incident after claims by the 8Base ransomware group that it successfully stole data from the German automotive giant.

Volkswagen maintains that its core IT infrastructure are not affected by the breach. But the wording focusing on "core infrastructure" leaves open the possibility of a breach at possible third-party, partner or supply chain compromise.

On September 23, 2024, the 8Base group claimed to have stolen confidential files from the automaker and issued threats of public release by September 26, 2024. Although the deadline passed 8Base listed the allegedly stolen data on its dark web leak site. Allegedly stolen data includes:

Invoices and receipts
Accounting documents
Personal employee files
Employment contracts
Certificates
Personnel records
Numerous confidentiality agreements
Financial records potentially spanning Volkswagen's global operations

The nature of the attack and number of affected individuals is not disclosed.

Volkswagen Group confirms cybersecurity incident after 8Base ransomware gang claims data theft

Read More
Singapore Esso discount programme customer card details exposed …
Delaware Life Insurance Company reports data breach after …
Ransomware attack on Sault Tribe operations shut down …
Feng Chia University hit by NOVA ransomware gang
Daixin Team claims ransomware attack on the City …