Saturday, January 25, 2025
Homecyber securityHertz Car Rental Platform Leaks 60,000 Insurance Claim Reports

Hertz Car Rental Platform Leaks 60,000 Insurance Claim Reports

Published on

SIEM as a Service

Follow Us on Google News

Hertz, a well-known car rental company, has inadvertently exposed over 60,000 insurance claim reports.

This breach has raised serious concerns about the company’s data security practices and left customers questioning the safety of their personal information.

Discovery of the Breach

The breach came to light when a customer received an unexpected email from Hertz regarding a rental record for a vehicle damaged.

unexpected email
an unexpected email from Hertz regarding a rental record for a damaged vehicle.

The email appeared legitimate, with the correct domain and professional formatting. However, it contained a suspicious link leading to an unfamiliar site, htzra.com, which was later identified as a phishing site.

Upon further investigation, it was revealed that this site was collecting sensitive information through a form disguised as an accident report submission.

Vulnerability Exploited

The root cause of this data exposure was a classic access control vulnerability known as Indirect Object Reference.

Decoding Compliance: What CISOs Need to Know – Join Free Webinar

This flaw allowed unauthorized users to access other customers’ accident reports simply by altering the URL.

Indirect Object Reference
Indirect Object Reference

The exposed reports contained personal information such as names, addresses, phone numbers, and ages of the affected individuals. Fortunately, only a small percentage of these reports included more detailed information.

Exposed reports contained personal information
Exposed reports contained personal information

Response and Mitigation

Upon discovering the breach, cybersecurity firm Adversis reported the issue to Hertz. The company swiftly shut down the compromised domain and restricted access to the leaked information.

According to a timeline provided by Adversis, the breach was identified and reported on September 5, 2024, and by September 13, 2024, CERT confirmed that the domain was no longer accessible.

Hertz has since issued a statement acknowledging the breach and assuring customers that it is taking steps to enhance its security measures.

They have also contacted affected customers to inform them of the incident and provide guidance on protecting their personal information.

This incident has highlighted significant vulnerabilities in Hertz’s data handling practices and underscores the importance of robust cybersecurity measures in protecting customer information.

Customers are advised to remain vigilant for suspicious communications and monitor their accounts for unusual activity.

Some customers may consider opting for companies with established bug bounty programs or stronger security protocols for future rentals.

This breach reminds us of the potential risks associated with sharing personal information online and the need for companies to prioritize data protection.

Are You From SOC/DFIR Teams? - Try Advanced Malware and Phishing Analysis With ANY.RUN - 14-day free trial

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

Subaru’s STARLINK Connected Car’s Vulnerability Let Attackers Gain Restricted Access

In a groundbreaking discovery on November 20, 2024, cybersecurity researchers Shubham Shah and a...

Android Kiosk Tablets Vulnerability Let Attackers Control AC & Lights

A security flaw found in Android-based kiosk tablets at luxury hotels has exposed a...

CISA Releases Six ICS Advisories Details Security Issues

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued six Industrial Control Systems (ICS)...

Juniper Routers Exploited via Magic Packet Vulnerability to Deploy Custom Backdoor

A sophisticated cyber campaign dubbed "J-magic" has been discovered targeting enterprise-grade Juniper routers with...

API Security Webinar

Free Webinar - DevSecOps Hacks

By embedding security into your CI/CD workflows, you can shift left, streamline your DevSecOps processes, and release secure applications faster—all while saving time and resources.

In this webinar, join Phani Deepak Akella ( VP of Marketing ) and Karthik Krishnamoorthy (CTO), Indusface as they explores best practices for integrating application security into your CI/CD workflows using tools like Jenkins and Jira.

Discussion points

Automate security scans as part of the CI/CD pipeline.
Get real-time, actionable insights into vulnerabilities.
Prioritize and track fixes directly in Jira, enhancing collaboration.
Reduce risks and costs by addressing vulnerabilities pre-production.

More like this

Subaru’s STARLINK Connected Car’s Vulnerability Let Attackers Gain Restricted Access

In a groundbreaking discovery on November 20, 2024, cybersecurity researchers Shubham Shah and a...

Android Kiosk Tablets Vulnerability Let Attackers Control AC & Lights

A security flaw found in Android-based kiosk tablets at luxury hotels has exposed a...

CISA Releases Six ICS Advisories Details Security Issues

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued six Industrial Control Systems (ICS)...