Toyota That network Hacker intrusion Approximately 240GB of data was stolen from the company’s systems.
The company said it has contacted those affected by the breach, but has not released any information about the attack, such as when it was discovered, who was responsible, or how much customer data was exposed.
Toyota said so Recognize the situation“The issue is limited in scope and is not a system-wide issue,” the company added.
ZeroSevenGroup reportedly stole information from Toyota, including details of the company’s employees, customers, contracts and financial information.
“We have hacked the US branch of one of the largest car manufacturers in the world (Toyota),” the threat actor reportedly claimed. “We are very happy to share your files here for free. Data size: 240 GB.”
The group also claimed to have used the open source ADRecon tool to gather network infrastructure information.
“In this intrusion, we have evidence that the attackers targeted the company’s active directory and used scraping tools to escalate privileges and gather further credentials and information about the network in order to exfiltrate large amounts of data,” Guido Grillenmeier, principal technologist at Semperis, said in an emailed statement to Dark Reading. “Given Toyota’s vast footprint with over 1,500 locations in the U.S. and over 200 global dealerships, it is not surprising that the attackers compromised one of Toyota’s U.S. dealerships.”
Toyota did not respond to Dark Reading’s request for comment.
