Overview

• Stellantis reported unauthorized access at a provider supporting its North American customer service operations.
• The company says exposed data was limited to customer names and email addresses, with no financial or sensitive personal details affected.
• Stellantis initiated its incident response, notified law enforcement, and began contacting impacted customers with phishing cautions.
• The number of people affected remains undisclosed, and the company has not identified the vendor as the investigation continues.
• The disclosure follows other auto-sector attacks, with Jaguar Land Rover keeping UK factories offline until at least September 24 after a separate breach.