FleetWave, a software-as-a-service vendor specializing in fleet management solutions, has disclosed a data breach affecting customer information. The company informed clients that attackers potentially obtained operational data, employee contact details, and payroll numbers during the security incident.

The breach notification came approximately one month after FleetWave completed restoration of its systems following the attack. The delay between system recovery and customer notification raises questions about the timeline of the company's incident response and disclosure process. FleetWave provides cloud-based fleet management software to organizations that rely on the platform for vehicle tracking, maintenance scheduling, and related operational functions.

The compromised data includes multiple categories of sensitive information. Operational data could reveal business processes and fleet deployment patterns, while contact details expose employees to targeted social engineering attacks. Payroll numbers represent particularly sensitive information that could facilitate identity theft or fraudulent activities if combined with other personal data.

Organizations using FleetWave services face potential risks from the exposed information. Attackers could use stolen contact details to launch convincing phishing campaigns against employees, leveraging knowledge of internal operations. The combination of operational data and employee information creates opportunities for business email compromise schemes or other targeted attacks against affected customers.

Affected organizations should immediately review access controls and monitor for suspicious activity related to compromised accounts. Security teams should alert employees about increased phishing risks and implement additional verification steps for sensitive requests. Companies should also assess whether the exposed payroll numbers could be correlated with other data sources to enable identity theft, and consider offering credit monitoring services to affected employees if warranted by the scope of exposure.

Source: https://www.theregister.com/cyber-crime/2026/05/12/fleetwave-outage-takes-another-turn-chevin-confirms-crooks-accessed-customer-data/5238046