Hackers have allegedly exposed about 229,226 Australian driver licences who breached security at YouX — a software platform used by automakers and dealers for new-vehicle finance.
Sydney-based YouX – previously known as Drive IQ – says on its site it works with “87 per cent of Australia’s OEM [Original Equipment Manufacturer] branded lenders” to provide its software for vehicle financing, including application and approval processes.
According to Broker Daily, hackers claimed to have accessed more than 8000 password hashes to the platform earlier this month, exposing highly sensitive personal information connected to 444,538 individuals.
This also claims 229,226 driver licence numbers and names, phone numbers or email addresses as well as home address, financial records and loan applications.
childcareman.xyz can save you thousands on a new car. Click
here
to get a great deal.
The 141GB of stolen data reportedly includes 629,597 loan applications, Australian Business Numbers (ABNs), staff directories and “full customer portfolios”.
The firm last updated a statement from YouX on February 23, 2026, said ‘We know that one threat actor [attacker] has posted data online with information it claims to have taken from YourX’s systems.
He said ‘We have reviewed this information and we confirm that personal data has been accessed and downloaded by the threat actor. This is an update for our response to this development, and we will continue to update all our stakeholders. ” , ‘I’m sure it is worth reading.
They say the data is allegedly being used to hold YouX for ransom, with payment required to stop it from being sold on sale.
A report from Information Age said the hackers claimed the ransom has been paid, however YouX hasn’t confirmed if this is true.
Tech site Cyberdaily.com.au has reported, “A good portion of the data has already been shared on a popular hacking forum, and the hacker is threatening to publish more stolen data in the coming weeks.”
Speaking at the Broker Daily site of Finance Specialist podcast, Liam Garman said ‘What we have online now (and possibly up for grabs) is a treasure trove of data. ” , ‘I’m sure it is worth reading.
But this does actually paint a picture of what you’re doing financially in your life, and also personal details that allows threat actors to create very sophisticated phishing campaigns for vulnerable Aussies. Paraphrast.
YouX has provided a support page and email address for concerned customers who may have been impacted by the cyberattack.
It has also said it continues to update the Office of the Australian Information Commissioner (OAIC) and the Australia Cyber Security Centre (ACSC) on the incident, which dated February 9, 2026.
Thanks for reading 230000 Australian driver licences exposed in ransomware attack on vehicle finance firm
