Nissan Motor Corporation and Nissan Financial Services data breach

Published: 15 March 2024

The Nissan Motor Corporation and Nissan Financial Services ("Nissan Oceania") have reported a cybersecurity breach where unauthorised access was gained to their servers by a third party.

What happened

On 5 December 2023, a malicious third party obtained unauthorised access to Nissan Motor Corporation and Nissan Financial Services in Australia and New Zealand local IT servers.

What was accessed?

The list of affected individuals includes some of Nissan's customers (including customers of Mitsubishi, Renault, Skyline, Infiniti, LDV and RAM branded finance businesses), dealers, and some employees.

The type of information involved will be different for each person. It's estimated that approximately 10% of individuals have had some form of government identification compromised. The data set includes approximately 4,000 Medicare cards, 7,500 driver’s licenses, 220 passports and 1,300 tax file numbers.

Approximately 90% of individuals have had some other form of personal information impacted, including copies of loan-related transaction statements for loan accounts, employment or salary information or general information such as dates of birth.

What the organisation is doing

Nissan has been working with government authorities including the Australian and New Zealand national cyber security centres, privacy regulators and external cyber forensic experts to review the compromised data and understand the impact on individuals.

Nissan expects to formally notify approximately 100,000 individuals about the cyber breach. This number might reduce as contact details are validated and duplicated names are removed from the list.

What an affected individual can do

Be alert for scams.

Be alert. If anyone contacts, you and claims to be from Nissan or a government agency. They may get in touch with you about this breach via email, letter, phone call, or text message.

Check your online accounts for unusual activity.
Check for and report any suspicious activity in your bank account or credit card.
Don’t click on links in emails or SMS claiming to be from Nissan.
Don’t give your details to someone who calls about the breach and claims to be from Nissan.
Don’t share your password or give remote access to your computer or other device.
Report scams that relate to this breach at Scamwatch www.scamwatch.gov.au.

Get support

ID Support NSW is a free government support service for all people in NSW to help individuals restore and protect their identity documents and personal information.

If you believe your personal information has been stolen, used, breached, or accessed without your knowledge or consent, or anyone impacted by this unfortunate event, contact ID Support NSW.

Call us

To receive personalised guidance from one of our team, call 1800 001 040. You can quickly and easily safeguard your information in around ten minutes, typically without any hold time. When you call, please have your reference number (below) ready.

Advisors are available between 9am and 5pm, Monday to Friday. Interpreter services are available.

Visit our self-help portal

Access personalised advice at a time convenient for you by visiting our self-help portal.

Self-help portal

Nissan's official breach notification

Read the full Nissan Cybersecurity Notice Important Update from Nissan Oceania | Nissan Australia

For specific details about the breach event and investigation, please contact the customer support line:

Australia 1800 958 000
New Zealand 0800 44 50 14