Stellantis Confirms Data Breach Affecting North American Customer Service Operations

Unauthorized Access Detected

Stellantis, the multinational automotive manufacturing corporation, has confirmed a data breach affecting its North American customer service operations. The company detected unauthorized access to a platform managed by a third-party service provider that supports these operations. The incident, which was reported on Sunday, September 21, 2025, is currently under investigation.

Nature of Exposed Data

According to Stellantis, the breach exposed only basic contact information of customers. The automaker emphasized that no financial details or sensitive personal data were compromised in the incident. The company has not disclosed the exact number of customers affected by this unauthorized access.

Company Response and Customer Advisory

Upon discovering the breach, Stellantis stated it immediately activated its incident response protocols and launched a thorough investigation. The company is directly informing affected customers and has also notified relevant authorities.

Stellantis has urged customers to remain vigilant against potential phishing attempts. This advisory is a common recommendation following data breaches, as exposed contact information can be used for targeted scams.

Broader Industry Context

This incident at Stellantis is part of a recent trend of cyberattacks targeting global automakers. The automotive industry has seen a rise in sophisticated threat actors disrupting operations and compromising sensitive data. For instance, earlier in September, British luxury carmaker Jaguar Land Rover reported severe disruptions to its retail and production activities due to a cybersecurity incident.