Following the disclosure on a hacker forum of an archive containing 240GB of data stolen from the company’s servers, Toyota admitted that its network had been hacked.
“We are aware of the situation. The issue is limited in scope and is not a system wide issue,”
Toyota replied to BleepingComputer’s request for proof of the threat actor’s claims.
Threat Actor
The information was found on a hacking forum by the well-known threat actor ZeroSevenGroup.
The threat actor claims that 240 GB of data, including contacts, financial records, customer information, personnel details, network infrastructure, messages, and databases, were hacked. They also claim that they gained detailed Active Directory Recon (AD-Recon) information, including passwords, for the whole target network.
“We have hacked a branch in United States to one of the biggest automotive manufacturer in the world (TOYOTA). We are really glad to share the files with you here for free. The data size: 240 GB,”
“We’re not kidding, we’ve been on the network for a long time,”
Before revealing the hack, the criminal group indicated that they had continuous access to Toyota’s Us branch.
The most recent hack comes after Toyota’s data was leaked several times. Customers were alerted by the company’s subsidiary, Toyota Financial Services (TFS), in December of last year to the possibility that an attack by ransomware named Medusa could expose their private financial and personal data.
Due to incorrect cloud database design, nearly two million customers‘ car location data was exposed in another data incident that occurred earlier in May.
Toyota has put in place an automatic system to keep an eye on database settings and cloud configurations in all of its environments in reaction to these incidents.
The goal of this action is to stop similar data leaks from happening again. With these initiatives, the most recent hack suggests that problems with protecting employee and consumer data in big businesses like Toyota still exist.
: August 16, 2024Victim
Information: TO*** (US-based, Japan)
Region: North AmericaSub
-Region: North
America or Region: United StatesIndustry
: AutomotiveAttack
Type: Data Breach, Data LeakThreat
Actor: ZeroSevenGroup
