Findlay Automotive Group recently reported a data breach to the Attorney General of Montana, revealing that sensitive personal information within its systems might have been accessed. On June 7, 2024, Findlay detected unauthorized activity in its network, prompting an immediate investigation. The company aimed to understand the scope and nature of the breach, leading to a comprehensive review of the data involved.
The investigation revealed that sensitive personal information, including names, Social Security numbers, driver’s license numbers, passport numbers, and employment-related details, might have been viewed or extracted by unauthorized parties. Findlay began identifying the affected individuals and assessing the extent of the data exposure. Although the specifics of the compromised data vary by individual, the potential impact includes a wide range of personal and employment-related information.
On July 19, 2024, Findlay initiated contact with impacted individuals by sending out general data breach notification letters. Subsequently, on July 25, 2024, the company issued updated, location-specific notifications to employees at its Findlay Honda Henderson and Findlay Land Rover Las Vegas locations. These notifications included details about the type of sensitive information affected and offered complimentary credit monitoring services to those impacted.
Findlay Automotive Group, based in Nevada, is a prominent automotive dealership group with operations across several states, including Arizona, Utah, Idaho, and Washington. Established in 1961, the company deals with a wide range of car brands and provides various auto services. In response to the breach, Findlay is reinforcing its security measures to protect against future incidents and ensure the continued privacy of personal data.
Reference:
