What Happened
On April 1, 2026, Nissan (specifically nissan.co.jp) suffered a data breach claimed by the ransomware group Everest, who threatened to leak approximately 900GB of the company’s internal data after gaining unauthorized access, with Nissan attributing the incident to a third-party vendor rather than its internal systems. The exact type of data exposed remains unclear, though prior context suggests it could involve sensitive customer or operational information similar to earlier incidents, and the leak size for this event is listed as unknown. No specific number of records affected is detailed in available reports, marking this as a distinct event from Nissan’s prior breaches like the late 2025 Red Hat-linked exposure of 21,000 Japanese customer records (names, addresses, phone numbers, partial emails) or the 2023 North America employee breach impacting 53,038 people. Nissan has not confirmed payment of any ransom demanded by Everest.
