Europcar denies data breach affecting 50 million customers — says ChatGPT is to blame in creating fake data

Europcar leak is certainly fake, but did AI really create the data?

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Europcar has said that a data breach affecting millions of its customers is fake.

A threat actor was discovered selling a database on a well-known underground forum which they claimed holds the records of close to 50 million customers of the car rental firm. The sample they shared shows apparent names, addresses, license numbers, and bank details among the information.

However, afterBleepingComputercontacted Europcar, the firm claimed the breach is not real, adding the data was likely spoofed usingAI toolssuch asChatGPT.

AI generated?

Europcar says it arrived at this suspicion as the, “addresses don’t exist, ZIP codes don’t match, first name and last name don’t match email addresses, email addresses use very unusual TLDs.”

What’s more, the company also stated that “none of these email addresses are present in our database.”

There are mismatches between usernames and emails, and some addresses have been made up, such as “Lake Alyssaberg, DC” and “West Paulburgh, PA.” Also, addresses and phone numbers pertain to regions in the US, while many of the corresponding email addresses are foreign.

HaveIBeenPwned creator Troy Hunt chimed in on X, tweeting that while he believes the data is fake, it isn’t necessarily AI-generated, pointing out that some of the email addresses contained in the dataset are real - they’ve just appeared in previous, unrelated data breaches monitored by the site.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

He also said that “we’ve had fabricated breaches since forever,” not just since the AI boom we’re experiencing right now. There are also various services that can easily create fake datasets that look convincing on the surface, for the purposes of creating XML documents and anonymizing data, among others.

MORE FROM TECHRADAR PRO

Lewis Maddison is a Reviews Writer for TechRadar. He previously worked as a Staff Writer for our business section, TechRadar Pro, where he had experience with productivity-enhancing hardware, ranging from keyboards to standing desks. His area of expertise lies in computer peripherals and audio hardware, having spent over a decade exploring the murky depths of both PC building and music production. He also revels in picking up on the finest details and niggles that ultimately make a big difference to the user experience.

This new phishing strategy utilizes GitHub comments to distribute malware

Should your VPN always be on?

Anker Nebula Mars 3 review: A powerful and truly portable projector