third-party apps
-
Renault and Dacia inform UK customers of data exposure after third‑party breach
Renault and Dacia told UK customers that personal data held by a third‑party provider was taken in a cyberattack, exposing names, contact details and vehicle identifiers; Renault said banking data was not exposed and declined to name the supplier or say how many customers were affected.
-
Stellantis confirms data breach via third-party provider exposing customer emails
Stellantis disclosed that attackers breached a North American third-party customer-service partner, exposing only customer names and email addresses. The company launched an investigation, notified law enforcement, and urged affected customers to watch for phishing, as the auto maker navigates broader industry disruption linked to a separate JLR cyberattack.
-
Chess.com discloses data breach linked to third-party file-transfer app; around 4,500 users affected
Chess.com says a data breach tied to a third-party file-transfer app affected about 4,500 of its 100 million users, with potential exposure of names and other PII but no financial data, and says law enforcement was notified and monitoring continues.
-
TransUnion breach affects 4.46 million; third-party app exposed personal data, not credit records
TransUnion disclosed a cyber incident affecting about 4.46 million individuals via a third-party application used by its US consumer-support operations. The breach did not touch core credit data, but exposed limited personal information, with victims offered two years of credit monitoring and fraud assistance.
-
Security Flaw in OneDrive File Picker Exposes Users to Risks
A recently discovered vulnerability in Microsoft’s OneDrive File Picker may allow third-party apps to access users’ entire OneDrive storage without their clear consent, posing significant risks of data exposure and compliance violations.
