December 2, 2023

Toyota is bringing some providers in its European and African monetary providers division again on-line after discovering a cyberattack.

A spokesperson for the automotive maker directed Recorded Future Information to a press release the corporate revealed in regards to the incident following claims made by a infamous ransomware gang.

“Toyota Monetary Providers Europe & Africa lately recognized unauthorized exercise on programs in a restricted variety of its places. We took sure programs offline to analyze this exercise and to scale back danger, and have additionally begun working with legislation enforcement. In most international locations, we’ve got began bringing our programs again on-line,” the corporate mentioned.

“We’re working diligently to get programs again on-line as quickly as doable and we remorse any inconvenience brought about to our clients and enterprise companions. As of now, this incident is proscribed to Toyota Monetary Providers Europe & Africa.”

Cybersecurity knowledgeable Kevin Beaumont noted that Toyota programs accessible by the web are susceptible to the “Citrix Bleed” vulnerability that has affected dozens of enormous firms and governments because it was introduced late final month.

The carmaker has handled a number of cybersecurity incidents during the last three years, together with a wide-ranging incident introduced in Could the place data on greater than 2 million automobiles in Japan was uncovered for greater than a decade.

Toyota handled one other breach in April and needed to resolve a separate safety problem that allowed for widespread entry to a platform utilized by staff to coordinate operations.

The corporate’s assertion got here hours after the Medusa ransomware gang claimed to have stolen information from Toyota Monetary Providers. The group gave the corporate 10 days to pay a $8 million ransom.

Medusa drew headlines earlier this week for an assault on a know-how firm created by two of Canada’s largest banks.

The Medusa gang has been behind a number of high-profile assaults in 2023, together with incidents that affected an Italian firm that gives consuming water to just about half one million individuals, one of many largest college districts in Minnesota, the French city of Sartrouville, Tonga’s state-owned telecommunications firm and most lately the federal government group that manages the common healthcare system of the Philippines.

Get extra insights with the

Recorded Future

Intelligence Cloud.

Study extra.

No earlier article

No new articles

Jonathan Greig

Jonathan Greig is a Breaking Information Reporter at Recorded Future Information. Jonathan has labored throughout the globe as a journalist since 2014. Earlier than shifting again to New York Metropolis, he labored for information retailers in South Africa, Jordan and Cambodia. He beforehand lined cybersecurity at ZDNet and TechRepublic.