Overview

• Stellantis says a third-party platform supporting its North American customer service was accessed, exposing only customer contact information.
• The company activated incident response, notified authorities, and is contacting affected customers while cautioning against phishing attempts.
• Stellantis has not identified the vendor or disclosed the number of affected customers and declined to provide additional details.
• ShinyHunters told BleepingComputer it stole more than 18 million records from the automaker’s Salesforce environment, a claim not verified by the company.
• Security outlets link the breach to a broader wave exploiting Salesloft/Drift OAuth tokens in Salesforce, with the FBI issuing a flash alert with related IOCs.