Former Tesla employees stole data of over 75,000 staff, company says

Share post:

Over 75,000 current and former employees of car manufacturer Tesla are being notified their personal information was stolen in an insider data breach.

Tesla notified the Maine attorney general’s office Friday of the breach, which occurred on May 10. The same day, according to a copy of a letter sent to victims and filed with the state, the German Handelsblatt media group notified the company that it had learned of the breach and obtained a copy of stolen information.

On investigating, Tesla discovered that two former Tesla employees had “misappropriated the information in violation of the manufacturer’s IT security and data protection policies and shared it with the media outlet.”

The data is described as contact information such as as address, phone number, and/or email address of staff.

The company then sued the former employees, which enabled the seizure of their electronic devices that were believed to have contained the Tesla information. Tesla also got court orders that prohibit the former employees from further use, access, or dissemination of the data, subject to criminal penalties.

The notice to the state of Maine says data of 75,735 people was copied. According to Tesla’s website, it has over 100,000 employees.

Related content: Should management lose their jobs for an insider attack?

Tesla co-operated with law enforcement and external forensics experts, and will continue to take appropriate action. The victims are being offered credit monitoring support.

The notice doesn’t say where the data theft took place, or why a German media firm was given a heads-up by the hackers. The company has offices in the U.S., China, Germany and Australia, and factories in Germany and China.

Related content: Canada issues guide on insider threats

Insider cyber attacks aren’t uncommon, but they aren’t anywhere near the majority of breaches of security controls. Verizon’s annual Data Breach Investigations Report, which has over a decade of data on attacks around the world, suggests an average of 30 per cent of attacks can be traced to insiders.

In the most recent report, 20 per cent of the 5,177 breaches looked at were caused by insiders.

Insiders would include contractors and partners allowed access to an organization’s IT network as well as employees.

Related content: Signs you have an insider problem

The post Former Tesla employees stole data of over 75,000 staff, company says first appeared on IT World Canada.
Howard Solomon
Howard Solomonhttps://www.itworldcanada.com
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times.

Featured Tech Jobs

SUBSCRIBE NOW

Related articles

Liberals to add ‘fundamental right to privacy’ to proposed law, but no details yet

As committee hearing start the Innovation minister promises changes to privacy law to meet complaints. Details to fo

Cyber Security Today, Sept. 27 2023 – Hackers are targeting luxury hotels, a Red Cross scam and more

This episode reports on phishing campaigns against the hospitality sector, a new ransomware operato

Ransomware attacks on U.S. public sector at record high

Ransomware attacks on the U.S. public sector are on track to reach record levels in 2023, with both...

APT hacking group AtlasCross targets organizations

A new advanced persistent threat (APT) hacking group named AtlasCross has been discovered targeting organizations with phishing lures...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways