Cyberattack on Cambridge Mobile Telematics Exposes Sensitive Driver Data
On June 2, 2026, the ransomware group CoinbaseCartel claimed responsibility for a cyberattack targeting Cambridge Mobile Telematics (CMT), a Massachusetts-based telematics and insurtech company. The group threatened to leak stolen data unless CMT engaged in negotiations, with the claim documented by cyber threat intelligence sources like Ransomware.live.
As of now, CMT has not publicly confirmed the breach or notified affected individuals, potentially placing the company in violation of federal or state data breach notification laws. The compromised data may include:
- Driving behavior records (trip logs, acceleration/braking patterns, phone distraction events)
- Location data (GPS coordinates, travel routes, location history)
- Personally identifiable information (PII) (user profiles, insurance details, account credentials)
The breach exposes affected individuals to risks such as identity theft and privacy violations, with potential legal recourse for damages and demands for improved cybersecurity measures. The full scope of the incident remains under investigation.
Source: https://www.classactionlawyers.com/blog/cmt
Cambridge Mobile Telematics cybersecurity rating report: https://www.rankiteo.com/company/cambridge-mobile-telematics
"id": "CAM1783996099",
"linkid": "cambridge-mobile-telematics",
"type": "Ransomware",
"date": "6/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Telematics and Insurtech',
'location': 'Massachusetts, USA',
'name': 'Cambridge Mobile Telematics (CMT)',
'type': 'Company'}],
'data_breach': {'data_exfiltration': 'Threatened by ransomware group',
'personally_identifiable_information': 'User profiles, '
'insurance details, '
'account credentials',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Driving behavior records',
'Location data',
'Personally identifiable '
'information (PII)']},
'date_detected': '2026-06-02',
'description': 'On June 2, 2026, the ransomware group CoinbaseCartel claimed '
'responsibility for a cyberattack targeting Cambridge Mobile '
'Telematics (CMT), a Massachusetts-based telematics and '
'insurtech company. The group threatened to leak stolen data '
'unless CMT engaged in negotiations. The compromised data may '
'include driving behavior records, location data, and '
'personally identifiable information (PII). The breach exposes '
'affected individuals to risks such as identity theft and '
'privacy violations.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'lack of public confirmation',
'data_compromised': 'Driving behavior records, location data, '
'personally identifiable information (PII)',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential violation of federal or state data '
'breach notification laws'},
'investigation_status': 'Under investigation',
'motivation': 'Extortion',
'ransomware': {'data_exfiltration': 'Threatened'},
'references': [{'source': 'Ransomware.live'}],
'regulatory_compliance': {'regulations_violated': ['Potential federal or '
'state data breach '
'notification laws']},
'threat_actor': 'CoinbaseCartel',
'title': 'Cyberattack on Cambridge Mobile Telematics Exposes Sensitive Driver '
'Data',
'type': 'Ransomware'}