Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Volvo Group North America employee SSN leak via Miljödata breach

Data Leak
First reported
Last updated
Happening score
H score 27
2 unique sources, 2 articles

Summary

Hide ▲

Volvo Group North America employees were exposed in a third-party HR breach, creating a Social Security number leak and identity-theft risk. The exposure traces to Miljödata, a Swedish HR SaaS provider breached in August 2025. Volvo NA's own systems were not touched, but the stolen data included employees' names and SSNs and was later reported as posted to the Dark Web. With roughly 20,000 employees, the leak affects a large workforce and raises fraud concerns.

Related Happenings

7-Eleven franchisee-docs and Salesforce data leak

Data Leak
First: 18.05.2026 14:25 Last: 18.05.2026 14:25 Sources 1

About this happening: **7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...

Latest development: 26.05.2026 10:01

Have I Been Pwned analyzed the leaked 7-Eleven data and estimated that the breach exposed personal information for 185,300 people, including names, dates of birth, unique email addresses, phone numbers, and physical addresses. The exposed archive was tied to ShinyHunters' extortion campaign against 7-Eleven and followed the group's leak-site posting after ransom demands were not met.

Open Happening

Wynn Resorts hit by cyberattack

Incident
First: 24.02.2026 23:51 Last: 24.02.2026 23:51 Sources 1

About this happening: **Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...

Open Happening

Conduent hit by network compromise

Incident
First: 10.02.2026 19:04 Last: 10.02.2026 19:04 Sources 1

About this happening: **Conduent** disclosed a **security breach** affecting its **IT systems** between **October 21, 2024** and **January 13, 2025**. Threat actors stole **full names**, **Social Secur...

Open Happening

ShinyHunters data-leak site exposing stolen attack data

Data Leak
First: 31.01.2026 17:02 Last: 31.01.2026 17:02 Sources 1

About this happening: The **ShinyHunters** extortion gang launched a **data-leak site**, beginning to publish data tied to the theft campaign and raising the exposure risk for victims.

Open Happening

Nissan Fukuoka Sales Co., Ltd. customer data leak via Red Hat breach

Data Leak
First: 22.12.2025 23:32 Last: 22.12.2025 23:32 Sources 1

About this happening: **Nissan** confirmed that **customer information** from **Nissan Fukuoka Sales Co., Ltd.** was exposed through the **Red Hat** breach, affecting about **21,000 customers**. The le...

Open Happening

Timeline

  1. 04.11.2025 18:53 1 articles · 6mo ago

    IMY investigates Miljödata leak over GDPR violations

    Legal Policy Action Update

    The Swedish Authority for Privacy Protection (IMY) investigates the Miljödata cyberattack after stolen data corresponding to 1.5 million people is exposed on the dark web; IMY says the case may involve GDPR violations and is prioritizing Miljödata, the City of Gothenburg, the Municipality of Älmhult, and the Region of Västmanland.

    Show sources
    Open in new tab
  2. 26.09.2025 22:59 1 articles · 8mo ago

    Miljödata cloud breach exposes HR data

    Exploitation Observed

    DataCarry breached Miljödata's cloud infrastructure on Aug. 20, compromising a Swedish HR SaaS environment that stewarded employee data for multiple customers, including Volvo Group North America. Volvo NA's own systems were not touched, but the supplier compromise created the conditions for later theft of employee records.

    Show sources
    Open in new tab
  3. 26.09.2025 22:59 1 articles · 8mo ago

    Miljödata discovers the breach three days later

    Detection Ioc Update

    Miljödata discovered the attack three days after the Aug. 20 intrusion, placing discovery on Aug. 23. The delayed detection matters because the compromise already encompassed a multi-tenant cloud environment that stored customer HR records.

    Show sources
    Open in new tab
  4. 26.09.2025 22:59 1 articles · 8mo ago

    Stolen Miljödata data is published to the Dark Web

    Victim Impact Update

    On Sept. 12, the threat actors warned that they would publish stolen Miljödata data to the Dark Web, and within hours they carried out that threat. The publication increased exposure risk for employee records such as names and Social Security numbers stolen from the compromised HR platform.

    Show sources
    Open in new tab
  5. 26.09.2025 22:59 2 articles · 8mo ago

    Volvo Group North America discloses employee data theft

    Initial Disclosure

    Volvo Group North America told staff it was one victim of the Miljödata breach. Its own systems were not touched, but employee names and Social Security numbers were stolen and potentially published to the Dark Web, leaving a large workforce exposed to identity-theft risk.

    Show sources
    Open in new tab