Volkswagen Group France

The cybercriminal group **Qilin** executed a targeted attack on **Volkswagen Group France**, compromising approximately **150 GB of sensitive data**, including **2,000 files** containing **confidential customer, employee, and business operation details**. The stolen data includes **personal information of vehicle owners** (names, addresses, emails) and **detailed vehicle records** (model designations, chassis numbers, license plates). Six sample documents were leaked as proof. The attack underscores the automotive industry’s vulnerability to **large-scale data breaches**, with extortionists increasingly targeting manufacturers for high-value intellectual property and customer data. The incident follows similar attacks on **BMW and Jaguar Land Rover**, highlighting systemic risks in the sector.

Source: https://www.it-daily.net/shortnews-en/volkswagen-hit-ransomware-attack

TPRM report: https://www.rankiteo.com/company/groupe-volkswagen-france

"id": "gro3102031110425",
"linkid": "groupe-volkswagen-france",
"type": "Cyber Attack",
"date": "10/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Automotive',
                        'location': 'Villers-Cotterêts, France',
                        'name': 'Volkswagen Group France',
                        'type': 'Subsidiary'}],
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': '2,000 files',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High (personally identifiable '
                                        'information and confidential business '
                                        'data)',
                 'type_of_data_compromised': ['personal information (names, '
                                              'addresses, emails)',
                                              'vehicle information (model '
                                              'designations, chassis numbers, '
                                              'license plates)',
                                              'business operations data']},
 'date_publicly_disclosed': '2023-10-14',
 'description': 'The cybercriminal group Qilin claimed responsibility for an '
                'attack on Volkswagen Group France, allegedly stealing '
                'approximately 150 gigabytes of data, including confidential '
                'customer, employee, and business operation information. The '
                'group published six sample documents as proof, containing '
                'personal details of vehicle owners (names, addresses, emails) '
                'and vehicle-specific data (model designations, chassis '
                'numbers, license plates).',
 'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
                                       'exposure of sensitive customer and '
                                       'business data',
            'data_compromised': '150 GB (2,000 files)',
            'identity_theft_risk': 'High (personal information of vehicle '
                                   'owners exposed)'},
 'initial_access_broker': {'high_value_targets': ['customer data',
                                                  'employee data',
                                                  'business operations data']},
 'investigation_status': 'Ongoing (based on public disclosure)',
 'motivation': ['financial gain', 'extortion'],
 'ransomware': {'data_exfiltration': True},
 'references': [{'source': 'Cybernews'},
                {'date_accessed': '2023-10-14',
                 'source': 'Qilin leak platform'}],
 'threat_actor': 'Qilin',
 'title': 'Qilin Cyberattack on Volkswagen Group France',
 'type': ['data breach', 'cyber extortion']}