Hertz announced a data breach affecting thousands of customers worldwide. The breach occurred through a third-party vendor, Cleo, between October and December 2024. Personal data, including names, contact information, and credit card details, may have been exposed.
The company believes an unauthorized party accessed data within Cleo's file-transfer software. Hertz stated that its own network was not affected. Impacted customers are located in the US, Australia, Canada, the EU, New Zealand, and the UK.
A notice filed in Maine reported 3,409 affected individuals. Texas declared 96,600 people were affected. Hertz is offering affected customers two years of identity monitoring services. Law enforcement has been notified of the incident.