// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
Breach Record

CarMax

DISCLOSED 2024-10-03 · STOLEN CREDS · 452,000 RECORDS EXPOSED

CarMax experienced a data breach involving 452,000 records, confirmed by a partial sample. The breach occurred on October 3, 2024, with a full dump on October 10. The threat actor Scattered LAPSUS$ Hunters gained access through compromised credentials in the Salesforce cloud environment.

The record

What we know

Disclosed
2024-10-03
Attack vector
Stolen Creds
Sector
automotive
Records exposed
452,000
Sources

Cited reporting

Similar vector · recent

Other stolen creds breaches on file

This page is the permanent ColdRecon entry for the CarMax disclosure. It updates if new public reporting emerges. All tracked breaches →

CarMax just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →