American truck and military vehicle manufacturer Navistar has confirmed that it was hit by a cyberattack that resulted in some data being stolen. The company announced Monday that it learned of a credible potential cybersecurity threat to its information technology system on May 20.
Navistar claimed it immediately took the necessary measures to contain and mitigate the impact of the incident, launched an investigation, engaged with security and forensics experts, and took steps to strengthen the security of its IT infrastructure and data contained therein. However, it said that on May 31 it "received a claim that certain data had been extracted from" its network. The company added that it continues to investigate "and address the scope and impact of the cybersecurity incident," and has already contacted law enforcement regarding the matter.
The SecurityWeek website reported that Navistar did not provide technical details on the incident but there is a possibility that ransomware might have been involved, considering the rising number of ransomware incidents observed in recent months in which attackers stole victim data to use it as leverage.