HYUNDAI

Update: Hyundai clarifies security incident involving SSNs & driver licenses

Hyundai reached out to clarify that the 2.7 million figure floating around refers to the total number of connected vehicles in North America, not the actual number of affected individuals potentially impacted by the incident.

“Approximately 2,000 individuals, primarily current and former Hyundai AutoEver America and Hyundai Motor America employment-related individuals, may have had employment-related data affected by the incident as opposed to general customer and/or connected vehicle data. Out of an abundance of caution, only those who may have been impacted would have received direct notifications that were mailed on or about October 30, 2025,” Hyundai told HotHardware in an emailed statement.

Hyundai also said it has taken proactive steps to address the incident. Our original coverage is below.

Original story...Hyundai is sending out letters to potentially millions of drivers affected by a newly disclosed data breach that happened earlier this year. According to the letter, a “cyber incident” at Hyundai AutoEver America (HAEA), an IT solutions provider for the automotive industry, resulted in unauthorized access to systems starting on February 22 and spanning through March 2.

HAEA, which manages IT operations and things like remote car features for Hyundai, Kia, and Genesis in North America, became aware of the infiltration on March 1, but is only now disclosing the data breach. In the letter, HAEA says it immediately launched an investigation with the aid of external cybersecurity experts to determine the scope of the cyber attack. The letter also states that HAEA took immediate steps to cut off access to hackers.

"The nature and scope of the incident required us to spend significant time and resources to analyze the available data and forensic information to complete our investigation. We continue to invest in additional security enhancements designed to mitigate future risk," HAEA states.

A sample letter (PDF) that is publicly available to view doesn't state exactly how many drivers are affected or what type of information was exposed, outside of names. Revealing details after that part are replaced with a "Data Elements" tag, as it's a template of the final letter that is being sent to affected drivers.

According to Forbes, the breach, which spanned multiple states, potentially affects up to 2.7 million vehicles across North America (presumably including ones sold on Amazon, of all places), with social security numbers and driver license data being part of the security incident. It's a massive breach if the actual number is anywhere close to that figure, especially given the type of data that was exposed.

As a mea culpa, HAEA is offering affected drivers optional enrollment into a credit monitoring service provided by Epiq Privacy Solutions at no cost for two years.

Hyundai has confirmed a data breach at its IT affiliate, Hyundai AutoEver America (HAEA), that potentially exposed the Social Security numbers (SSNs) and driver's license information of up to 2.7 million individuals. The company is notifying affected customers and offering complimentary credit monitoring services. 

The Modern Car Is a Computer on Wheels...Here's what makes automotive breaches particularly concerning: Your car isn't just transportation anymore. It's a rolling data center.

Modern vehicles collect and transmit information constantly:

-Where you drive and when

-Your home and work addresses

-How fast you accelerate and brake

-When you service your vehicle

-Your purchase and financing details

When hackers breach the IT provider managing this digital ecosystem, they don’t just get your Social Security number. They potentially access a comprehensive profile of your life and habits. It’s like the difference between someone stealing your wallet versus breaking into your phone. The phone contains exponentially more information about you.

What You Should Do Right Now...If you own or lease a Hyundai, Kia, or Genesis vehicle:

Immediate Actions:

-Check your credit reports for unauthorized accounts or inquiries. You can get free reports at AnnualCreditReport.com

-Monitor bank and credit card statements weekly for suspicious charges

-Enable transaction alerts on your financial accounts

If You Receive a Notification Letter:

-Enroll in the free credit monitoring within 90 days using the unique code provided

-The service runs for two years and monitors all three credit bureaus

-Call the dedicated hotline at 855-720-3727 with questions

For Everyone, Breached or Not:

Consider a credit freeze with Equifax, Experian and TransUnion. This prevents identity thieves from opening new accounts in your name

Enable fraud alerts which require creditors to verify your identity before issuing credit

Watch for phishing scams exploiting breach news. Hyundai will never ask for your Social Security number or payment information via email

The Uncomfortable Truth About Data Breaches...Data breaches have become depressingly routine. In 2024 alone, major incidents hit healthcare providers, retailers, financial institutions, and now automotive companies joining the list with alarming frequency.

But there's something particularly unsettling about automotive breaches. You chose your bank and can switch it. You chose your doctor and can change providers. But if you bought a Hyundai three years ago, you're stuck with their security practices until you sell the vehicle. Your data sits in their systems whether you like it or not.

And unlike a credit card breach where the bank typically covers fraudulent charges, identity theft involving Social Security numbers can create problems that take years to resolve. Victims may discover the theft only when they're denied a loan, receive bills for services they never used, or have their tax returns rejected because someone else already filed using their information.

Details of the Incident:

-Affected Entity: The breach occurred within the systems of Hyundai AutoEver America, which manages the IT operations and services (including telematics, software updates, and dealership systems) for Hyundai, Kia, and Genesis in North America.

-Timeline: Unauthorized activity was detected on March 1, 2025, but the attackers had access to the systems from February 22 to March 2, 2025.

-Data Exposed: The compromised data included customers' full names, Social Security numbers, and driver's license numbers.

-Victim Count: While the exact number of individuals affected has not been officially confirmed, the systems connect to up to 2.7 million vehicles across North America, suggesting a potentially massive scope.

-Response: Upon discovery, Hyundai launched an investigation with third-party cybersecurity experts, secured its systems, and engaged with law enforcement. 

Hyundai's Clarification and Action...Hyundai is in the process of sending notification letters to those individuals confirmed to be affected by the breach. The company has stated that it is not aware of any specific misuse of the data at this time. 

For individuals whose sensitive information was exposed, Hyundai AutoEver America is providing a complimentary two-year subscription to a credit-monitoring service to help them protect against identity theft. 

This incident marks the third major security incident for the automotive giant in as many years, following previous breaches in Europe in 2023 and 2024. 

Autonews