Toyota Financial Services (TFS), a subsidiary of Toyota Motor Corporation, has warned customers that it recently suffered a data breach which exposed sensitive personal and financial data.

The correspondence with affected customers follows Toyota confirming last month that unauthorised access on some of its Europe (and Africa) systems had been detected. Medusa ransomware reported that it was behind Toyota’s system being compromised and issued Toyota with an $8,000,000 ransom request to have the stolen data deleted.

The advice from TFS to its customers is to contact their bank to take additional security precautions, add 2FA to their online accounts, monitor any unusual activities, and obtain a current credit report from Schufa (a German credit rating agency). Toyota has also said that it has informed the responsible state data protection officer (for North Rhine-Westphalia) in compliance with GDPR.