Ethos Group Breach - July 30, 2022

Ethos Group provides a full suite of services to car dealerships throughout the country. The company is based in Irving, Texas, and offers training, insurance solutions, consulting, compliance services, and recruiting to car dealerships. The business employs more than 388 people overall and earns more than $300 million in revenue annually.

What Was the Breach?

The breach included the following pieces of data at a minimum, and it's possible additional data was taken as well.

• Full Name
• Driver's License Number

How Did the Breach Occur?

A single individual was able to gain access to select Ethos Group data servers for two days. It's unclear if any files were copied during the breach, but at least one user accessed unauthorized files during the time of the breach. A specialist reviewed the attack to determine which files were accessed and began sending letters to any individuals that were potentially impacted by the breach.

When Did This Breach Occur?

The Ethos Group breach occurred between July 30 and July 31, 2022.

Who Does the Breach Impact?

The Ethos data breach could have impacted customers that worked with car dealerships served by Ethos Group, as well as Ethos Group employees and related car dealership employees. Any of these groups has the potential to be exposed to this attack.

How Many Files Does the Breach Affect?

The breach exposed files belonging to up to 822,723 individuals overall, putting a significant number of users at risk of identity theft. If you received a letter from Ethos Group, your information might be exposed, and you should monitor your credit carefully.