On the Dash:
- Stellantis experienced a data breach via a third-party service provider platform, exposing only basic contact information, not sensitive or financial data.
- The automaker immediately activated incident response protocols, notified authorities, and is informing affected customers while urging vigilance against phishing.
- The breach is part of a broader trend of cyberattacks targeting global automakers, highlighting growing industry-wide cybersecurity risks.
Stellantis on Sunday confirmed unauthorized access to a third-party service provider platform that supports its North American customer service operations. The automaker said the incident exposed only basic contact information and did not involve financial details or sensitive personal data.
The company has not disclosed the number of affected customers.
“Upon discovery, we immediately activated our incident response protocols, initiated a comprehensive investigation, and took prompt action to contain and mitigate the situation,” Stellantis said in a statement. The company added that it has notified the appropriate authorities and is directly informing impacted customers.
Stellantis urged customers to remain vigilant against potential phishing attempts and to avoid clicking on suspicious links or sharing personal information in response to unexpected emails, texts, or calls. Customers with questions or concerns were advised to contact Stellantis directly through official channels.
The incident comes amid a rise in cybersecurity attacks targeting automakers worldwide. Earlier this month, British luxury carmaker Jaguar Land Rover said its retail and production operations were severely disrupted by a cyberattack, forcing factory shutdowns until Sept. 24.
Stellantis emphasized that the affected platform does not store financial or sensitive personal information and confirmed that no one accessed these types of data. The company stated that safeguarding customer data and maintaining trust remain its top priorities.
