Tuttle-Click Data Breach Impacts 6,012 People, Leaks Sensitive PII

On July 29, 2024, Tuttle-Click Automotive Group, a well-established automotive company serving Southern California and Arizona, discovered a significant data breach that affected 6,012 individuals across the United States. The breach was reported to the Maine Attorney General's office, revealing that the personal information of one Maine resident was also compromised.

This breach involved unauthorized access to sensitive consumer data, including names and Social Security numbers.

The breach occurred when an unknown actor infiltrated Tuttle-Click's systems, encrypting certain parts of their network with malware. This unauthorized access likely took place between November 24, 2023, and December 5, 2023.

Upon discovering the suspicious activity, Tuttle-Click swiftly moved to secure their systems and launched an investigation. The investigation concluded on September 3, 2024, confirming that personal data had been accessed and potentially acquired by the attacker.

Tuttle-Click Automotive's Response

In response to the data breach, Tuttle-Click Automotive Group took immediate action to mitigate the impact. They brought the affected systems offline and conducted a thorough investigation to understand the scope of the breach. The company notified federal law enforcement and relevant state regulators, including the Maine Attorney General's office.

To protect affected individuals, Tuttle-Click is offering two years of complimentary credit monitoring services through IDX. They are also providing guidance on how to protect against identity theft and fraud, including instructions on placing fraud alerts and security freezes on credit files.

Steps to Take if You Are Affected

If you have been notified that your information was part of this breach, it is crucial to take proactive steps to protect yourself:

1. Enroll in Credit Monitoring: Take advantage of the complimentary credit monitoring services offered by Tuttle-Click through IDX. Enrollment instructions are provided in the notification letter.
2. Monitor Financial Accounts: Regularly review your bank and credit card statements for any unauthorized transactions. Report any suspicious activity immediately.
3. Check Credit Reports: Obtain free credit reports from the three major credit bureaus—Equifax, Experian, and TransUnion—by visiting AnnualCreditReport.com. Look for any unfamiliar accounts or inquiries.
4. Place Fraud Alerts or Credit Freezes: Consider placing a fraud alert or credit freeze on your credit file to prevent new accounts from being opened in your name without your consent. Contact the credit bureaus directly to initiate these protections.
5. Stay Informed: Keep an eye on communications from Tuttle-Click for any updates regarding the breach and additional steps they may take to protect your information.

About Tuttle-Click Automotive Group

Tuttle-Click Automotive Group has been a trusted name in the automotive industry since 1946, with locations in Irvine, Tustin, and San Juan Capistrano, California, as well as Tucson and Green Valley, Arizona. The company prides itself on delivering exceptional customer experiences and supporting its employees' professional growth. For more information about their services and locations, visit Tuttle-Click Automotive Group's website.