Kirsten Korosec reports:
Volvo Cars is investigating a cybersecurity breach and theft of a limited amount of the company’s research and development data. The data breach was reported Friday by the Swedish automaker.
The company said one of its file repositories had been illegally accessed by a third party. Investigations have revealed that a “limited amount of the company’s R&D property has been stolen during the intrusion,” the company said in a statement Friday.
Despite the limited amount, there may be an impact on the company’s operation, Volvo Cars said.
Read more at TechCrunch. As that report notes, there is an entry or listing for Volvo on a dark web leak site associated with threat actors known as Snatch. The proof of claim includes a directory that might relate to the firm’s research, but as this site learned in investigating another listing on Snatch’s site, a listing on their site does not mean that the victim was actually attacked by Snatch. DataBreaches.net sent an inquiry to Snatch asking whether this one was their work or not, but no reply was immediately received. This post will be updated when one is received.
Update: In an emailed statement to DataBreaches.net, Snatch clarified that as with the CareFirst inquiry, Snatch was not responsible for the attack. In response to more specific questions about the Volvo incident and listing, they replied:
Sorry, but we have to skip the question related to Volvo case for now, as it’s under NDA and publicity completly depends on Volvo’s actions.
We can only inform you we have critical data related to the source-codes of Volvo’s cars.