A car rental giant says sensitive customer data has been exposed in a cybersecurity incident involving one of its vendors.
In a notice posted on its website, Hertz says that its vendor, Cleo Communications US, witnessed a zero-day vulnerability exploit late last year that enabled thieves to siphon customer data.
Notifications on various state government websites show at least 100,000 people are affected.
Hertz says the data breach exposed customer information, including names, contact details, credit card records and driver’s license numbers. Hertz also says that a “very small number of individuals” had their Social Security numbers, passport records, Medicare or Medicaid IDs and entries related to vehicular accident claims exposed as well.
“On February 10th, 2025, we confirmed that Hertz data was acquired by an unauthorized third party that we understand exploited zero-day vulnerabilities within Cleo’s platform in October 2024 and December 2024. Hertz immediately began analyzing the data to determine the scope of the event and to identify individuals whose personal information may have been impacted.”
Hertz says it uses Cleo as a file transfer platform for “limited purposes,” and that the vendor immediately took steps to address the security gaps. Hertz has not disclosed how many of its customers were affected by the data breach.
The firm also sent letters to its customers to disclose the security incident while offering free identity monitoring services to individuals whose records were stolen.
“While Hertz is not aware of any misuse of personal information for fraudulent purposes in connection with the event, we encourage potentially impacted individuals, as a best practice, to remain vigilant to the possibility of fraud or errors by reviewing account statements and monitoring free credit reports for any unauthorized activity and reporting any such activity.”
Follow us on X, Facebook and Telegram
Don’t Miss a Beat – Subscribe to get email alerts delivered directly to your inbox
Check Price Action
Surf The Daily Hodl Mix
 
Disclaimer: Opinions expressed at The Daily Hodl are not investment advice. Investors should do their due diligence before making any high-risk investments in Bitcoin, cryptocurrency or digital assets. Please be advised that your transfers and trades are at your own risk, and any losses you may incur are your responsibility. The Daily Hodl does not recommend the buying or selling of any cryptocurrencies or digital assets, nor is The Daily Hodl an investment advisor. Please note that The Daily Hodl participates in affiliate marketing.
Generated Image: Midjourney
Source: https://dailyhodl.com/2025/04/19/100000-americans-exposed-as-auto-giant-warns-customers-names-contact-details-credit-card-information-social-security-numbers-leaked-in-data-breach/