U-Haul Data Breach Impacts 67,000 Customers across the US and Canada: Here’s What We’ve Learned
- March 27, 2024
- 11:30 am
Breach Discovered in December, Affected Customer Information Exposed
Moving company U-Haul confirmed on Friday that a data breach occurred last year, impacting approximately 67,000 customers across the United States and Canada. The company discovered the breach, which resulted from hacking activity, in early December 2023. According to court filings submitted in Maine, the hacking took place between July 20 and October 2, 2023.
Exposed Information and Breach Details
U-Haul spokesperson Jeff Lockridge stated that customer names, birth dates, and driver’s license numbers were accessed during the breach.
The unauthorized access occurred through a system used by U-Haul dealers and employees to manage customer reservations and records. Lockridge emphasized that this system is not part of U-Haul’s payment network, and therefore, no payment card information was compromised.
U-Haul Notifies Affected Customers and Implements Security Enhancements
Following a thorough investigation by a cybersecurity firm, U-Haul spokesperson Jeff Lockridge stated that the company initiated a process to notify all affected customers through mail. This notification followed the discovery of the breach and the immediate implementation of a plan to secure compromised accounts.
“U-Haul is committed to protecting the security and confidentiality of the information it maintains,” Lockridge wrote, emphasizing the company’s swift action in notifying affected individuals.
Unfortunately, the specific number of Arizona residents impacted by the breach was not readily available at the time.
Enhancing Security and Providing Resources to Affected Individuals
To prevent similar incidents in the future, U-Haul outlined several key steps in a notice sent to affected customers in Maine:
- Enhanced Security Measures: The company is actively working to “enhance” its existing security measures, which may include additional safeguards and protocols.
- Password Changes: As a precautionary measure, U-Haul has reset the passwords of accounts involved in the hacking incident.
- Toll-Free Call Center: A dedicated toll-free call center has been established to provide affected individuals with further information and answer any questions they may have regarding the breach.
- Credit Monitoring and Identity Theft Protection: U-Haul is offering complimentary one-year memberships to credit monitoring and identity theft protection services for affected residents in Maine. This service helps individuals monitor their credit reports for suspicious activity and assists in resolving any potential identity theft issues.
Note: The information regarding the complimentary credit monitoring and identity theft protection services might be specific to the state of Maine. It is recommended that impacted individuals from other regions consult the official U-Haul notification or contact their local branch for details on available resources in their area.