Europcar Mobility Group

A hacker accessed the GitLab repositories of Europcar Mobility Group, compromising source code for mobile applications and personal information of up to 200,000 customers. The breach included 37GB of data such as backups, details about cloud infrastructure, and internal apps. While credit card information and passwords were not exposed, the loss of personal data such as names and email addresses constitutes a significant privacy concern for customers of the diverse range of Europcar, Goldcar, and Ubeeqo brands operating across 140 countries.

Source: https://www.bleepingcomputer.com/news/security/europcar-gitlab-breach-exposes-data-of-up-to-200-000-customers/

TPRM report: https://scoringcyber.rankiteo.com/company/europcar-mobility-group

"id": "eur531040425",
"linkid": "europcar-mobility-group",
"type": "Breach",
"date": "4/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 200000,
                        'industry': 'Car Rental',
                        'location': 'Operating across 140 countries',
                        'name': 'Europcar Mobility Group',
                        'type': 'Company'}],
 'attack_vector': 'Unauthorized Access to GitLab Repositories',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 200000,
                 'personally_identifiable_information': ['Names',
                                                         'Email addresses'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Source code for mobile '
                                              'applications',
                                              'Personal information',
                                              'Backups',
                                              'Details about cloud '
                                              'infrastructure',
                                              'Internal apps']},
 'description': 'A hacker accessed the GitLab repositories of Europcar '
                'Mobility Group, compromising source code for mobile '
                'applications and personal information of up to 200,000 '
                'customers. The breach included 37GB of data such as backups, '
                'details about cloud infrastructure, and internal apps. While '
                'credit card information and passwords were not exposed, the '
                'loss of personal data such as names and email addresses '
                'constitutes a significant privacy concern for customers of '
                'the diverse range of Europcar, Goldcar, and Ubeeqo brands '
                'operating across 140 countries.',
 'impact': {'brand_reputation_impact': 'Significant privacy concern',
            'data_compromised': '37GB of data including source code, backups, '
                                'details about cloud infrastructure, internal '
                                'apps, and personal information',
            'identity_theft_risk': 'High',
            'payment_information_risk': 'Low',
            'systems_affected': 'GitLab repositories'},
 'initial_access_broker': {'entry_point': 'GitLab repositories'},
 'threat_actor': 'Hacker',
 'title': 'Europcar Mobility Group Data Breach',
 'type': 'Data Breach'}

Europcar Mobility Group

Dansons

TEP Holdings, LLC

Bolton Global