no-reply | Dear Customer,
We are writing to inform you of a recent cybersecurity incident at FCA US LLC that may have involved your personal contact information. You may know us better through our brands, which include Jeep, Chrysler, Dodge, Ram, and Alfa Romeo.
On August 8, 2025, we became aware of unauthorized access to one of our third‑party service providers’ platforms, which we use to manage customer service interactions related to vehicle issues and inquiries. Our investigation identified August 7, 2025, as the earliest date of unauthorized access to the platform. The incident resulted in acquisition of certain customer contact information, but the information is limited to your name along with one or more of the following: phone number, email address(es) associated with your account, and/or address.
What We Are Doing
- We immediately launched an investigation with the support of cybersecurity experts.
- We have taken steps to secure the affected platform and are working closely with the service provider to ensure enhanced security measures are in place.
- We are notifying the appropriate authorities.
What You Can Do
We recommend the following precautions to help protect yourself:
- Be Skeptical of Unsolicited Requests: Be wary of any unexpected emails, text messages, or phone calls asking for personal information, login credentials, or financial details. Be extra cautious of any message that expresses a sense of urgency, such as asking you to act right away.
- Verify the Sender: Always check the sender's email address. Look for any inconsistencies or misspellings in the domain name.
- Do Not Click Suspicious Links: Avoid clicking on links or downloading attachments from emails that seem unusual or are from an unknown sender.
For more resources and information on how to protect yourself, please visit the Federal Trade Commission’s website.
Need Assistance?
We are committed to supporting you through this process. If you need assistance, we have established a dedicated phone number specifically for this matter.
Please contact our dedicated support team at 1‑833‑833‑9981 with any questions.
Protecting your information is important to us. We appreciate your patience and understanding.
Sincerely,
FCA US LLC
FAQs
1. Why did I receive this letter?
You received this letter because your name, email address, and/or home address was obtained without authorization during a cyberattack on a third‑party platform we use for customer service management. No sensitive information was involved in the incident. We are notifying you out of an abundance of caution.
2. What information was involved?
Based on our investigation, the information includes your full name and one or more of the following contact details:
| ‑ | Email address and/or | | ‑ | Phone number and/or | | ‑ | Address |
No financial information, passwords, or government-issued ID numbers were involved.
3. Was my credit card or banking information compromised?
No. We do not store financial information on the affected platform.
4. What are you doing to fix this?
We have:
| ‑ | Secured the affected platform | | ‑ | Engaged cybersecurity experts to investigate | | ‑ | Notified appropriate authorities | | ‑ | Implemented additional safeguards to prevent future incidents |
5. What should I do now?
We recommend:
| ‑ | Being cautious of suspicious emails or messages | | ‑ | Not clicking on links or downloading attachments from unknown sources | | ‑ | Monitoring your email account for unusual activity | | ‑ | Enabling multi‑factor authentication on your email if available |
6. What is “phishing?”
Phishing occurs when bad actors use your contact information to send phishing emails. These emails may appear to come from legitimate sources and attempt to trick you into providing sensitive information.
Common Types of Phishing Attacks
| ‑ | Email Phishing Attacks - Email phishing is the most prevalent type, wherein cybercriminals send out mass emails impersonating reputable organizations. These emails contain carefully crafted messages designed to provoke immediate action from recipients. | | ‑ | Spear Phishing Attacks - These types of attacks target specific individuals or groups rather than mass audiences. Hackers conduct extensive research to personalize messages, making these attacks much harder to detect. | | ‑ | Smishing (SMS Phishing) Attacks - Phishing carried out through text messages (SMS) are called smishing. Cybercriminals send text messages claiming to be from trusted companies or institutions, urging immediate action to resolve an issue like account suspension or unauthorized transactions. | | ‑ | Vishing (Voice Phishing) Attacks - Voice phishing, known as vishing, involves attackers making fraudulent phone calls. Cybercriminals impersonate bank representatives, customer support agents, or government officials to gain trust. | | ‑ | Clone Phishing Attacks - Clone phishing attacks duplicate previously delivered legitimate emails with slight alterations. Attackers replace links and attachments with malicious versions, then resend the cloned email, claiming it’s an updated or corrected version. |
7. How can I tell if an email is a phishing attempt?
Watch for:
| ‑ | Urgent or threatening language asking you to take action quickly | | ‑ | Misspellings or grammatical errors | | ‑ | Requests for personal or financial information | | ‑ | Suspicious links or attachments |
If you're unsure, do not click anything and contact our dedicated support team at 1‑833‑833‑9981.
8. Will you offer credit monitoring or identity theft protection?
We are not offering credit monitoring. We can help you identify and prevent a phishing attack if your contact information was impacted, which may lead to a phishing attack.
9. Who can I contact for more information?
You can reach our dedicated support team at 1‑833‑833‑9981. Our dedicated call center will be live for 90 days.
We’re here to help and answer any questions you may have, and we are committed to providing a response as quickly as possible. |
|
