Prosura Data Breach 2025: Risks and Security Gaps

A hooded figure symbolising a cyber criminal, highlighting the threat of breaches like the one at Prosura. Prosura, a car rental insurance provider, discovered unauthorised access to parts of its internal systems in early January. Attackers accessed personal data belonging to customers of Prosura and its related services, Hiccup and VroomVroomVroom, and demanded a ransom to stop the data from being leaked. Early investigations suggest the compromised records include names, email addresses, phone numbers, travel and insurance policy details, and even drivers’ licence images. 

Importantly, Prosura says no payment card details were stored or affected. The company temporarily suspended new policy sales and its online self-service portal to contain the breach, and warned customers not to respond to any suspicious messages. Even so, some customers were already contacted by the attacker, highlighting the aggressiveness of the tactics.

Key Security Lessons

• Identity & access management: The Prosura security breach highlights the risks associated with weak access controls. Companies should be using strong identity and access controls, enforcing multi-factor authentication, and giving users access only to what they need. These measures will reduce the likelihood of an unauthorised person accessing sensitive and confidential information.

• Segregate Data: Sensitive information must be kept separate from all other information to avoid a breach that could potentially compromise everything. Using network and database segmentation and encrypting sensitive data can limit what attackers are able to see or access. Even if an attack happens, these steps help reduce how much information is exposed and prevent attackers from viewing the full data set.

• Incident response readiness: An essential part of being well prepared for an incident response is to have a well-developed and tested incident response plan. In addition to using external cybersecurity professionals to develop. Their Incident Response Plan and enacting it, Prosura allowed for direct communication with victims by an attacker; this suggests that there could have been a faster method in which to control the scene and make consumers aware of the attack. Companies that conduct regular incident response drills with clearly defined incident roles are better prepared for incident response.

• Customer communication: Prompt and transparent communication with affected customers helps preserve trust. Prosura publicly announced the breach and cautioned clients not to engage with scammers. Effective communication strategies (such as clear breach notices and guidance) are essential to prevent panic and misinformation.

• Compliance and Regulations: All companies, big or small, need to understand their duties under the Privacy Act and the Notifiable Data Breaches scheme. They must report breaches on time and take quick action when something goes wrong.
  

How to Move Forward with Protectera 

All organisations can become victims of cyber-attacks, as shown by the Prosura incident. This highlights the need for strong security measures and being prepared to respond if an attack occurs.

Thinking about getting started? Protectera helps organisations conduct cyber risk assessments, incident response planning and ensure compliance with CIRMP in relation to incident response issues related to cyber incidents. Our cybersecurity team can show you how Protectera helps you protect your information assets, as well as comply with your regulatory obligations. Call us at 02 7227 5428 or schedule a free consultation with a cybersecurity professional today. Also, be sure to follow Protectera on LinkedIn.