Stellantis, the multinational automotive corporation encompassing brands such as Chrysler, Fiat, Jeep, Dodge, and Ram, has recently disclosed a data breach affecting its North American customer service operations. The breach originated from unauthorized access to a third-party service provider’s platform, leading to the exposure of customer contact information. Importantly, the company has assured that financial details and sensitive personal data remain secure.
Details of the Breach
On September 21, 2025, Stellantis detected unauthorized access to a platform managed by a third-party service provider integral to its North American customer service operations. The breach resulted in the exposure of basic contact information, including names and email addresses. Stellantis has not specified the exact number of customers affected but has confirmed that financial details and sensitive personal data were not compromised.
Company Response
Upon discovering the breach, Stellantis promptly activated its incident response protocols. The company initiated a comprehensive investigation, notified relevant authorities, and began directly informing affected customers. Stellantis has also urged customers to remain vigilant against potential phishing attempts and to avoid clicking on suspicious links or sharing personal information in response to unexpected communications.
Potential Link to ShinyHunters
Reports suggest that the data breach may be linked to the hacking group known as ShinyHunters. This group has previously targeted various organizations, including those utilizing Salesforce platforms. In this instance, ShinyHunters allegedly accessed Stellantis’ Salesforce database, claiming to have stolen approximately 18 million customer records. The group reportedly used tools like TruffleHog to scan source code for secrets, leading to the discovery of OAuth tokens for platforms such as Salesloft Drift and Drift Email. These tokens were then exploited to access and exfiltrate data from Salesforce instances.
Industry-Wide Cybersecurity Concerns
The automotive industry has been increasingly targeted by cyberattacks. Earlier this month, British luxury carmaker Jaguar Land Rover experienced a significant cybersecurity incident that severely disrupted its retail and production activities, leading to factory shutdowns until September 24, 2025. The attack was claimed by a group known as Scattered Lapsus$ Hunters, which has been associated with several high-profile breaches.
Customer Guidance
Stellantis emphasizes the importance of customer vigilance in the wake of this breach. Customers are advised to:
– Be cautious of unsolicited communications requesting personal information.
– Avoid clicking on links or downloading attachments from unknown sources.
– Verify the authenticity of communications by contacting Stellantis through official channels.
For any concerns or to verify communications, customers should reach out to Stellantis directly.
Conclusion
Stellantis’ recent data breach underscores the growing cybersecurity challenges facing the automotive industry. While the company has taken immediate steps to address the incident and protect its customers, this event highlights the critical need for robust cybersecurity measures and continuous vigilance against evolving cyber threats.
