Karl Auto Group Data Breach Compromises Sensitive Personal Information

Karl Auto Group, a Central Iowa automotive dealer group headquartered in Ankeny, Iowa, disclosed a data breach involving unauthorized access to its computer systems. The total number of individuals affected has not been publicly reported.

An unauthorized third party gained access to certain computer systems used in Karl Auto Group's business operations. The unauthorized access occurred prior to March 27, 2026, but the company did not become aware of it until April 4, 2026.

The cyberattack disrupted the company's phone and computer systems and impacted normal business operations across its dealerships, according to dark web intelligence reporting.

On June 5, 2026, a threat actor group known as RansomHouse claimed responsibility for the attack on open web channels. The group alleged it had encrypted Karl Auto Group's systems.

During the period of unauthorized access, the intruder may have accessed files and data containing personal information belonging to current and former customers, employees and other individuals who provided personal information to Karl Auto Group.

The types of personal information that may have been exposed include full names, Social Security numbers, driver's license numbers or other government-issued identification numbers, financial account information and passport numbers or passport images.

Karl Auto Group posted a notice on its website to inform affected individuals.

Karl Auto Group's response to the breach

Karl Auto Group continues to evaluate and enhance its security practices. The investigation is ongoing, and the company is working to determine the full scope of the incident.

The company's notification does not mention offering free credit monitoring or identity protection services to affected individuals. Given that the breach potentially exposed highly sensitive information such as Social Security numbers, financial account details and passport data, affected individuals may want to take steps on their own to protect themselves.

Affected individuals who have questions can contact Karl Auto Group at 1-855-743-1815. Representatives are available Monday through Friday from 9 a.m. to 9 p.m. Eastern Time.