1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Millions of Toyota drivers have had data exposed - here's what yo

    From TechnologyDaily@1337:1/100 to All on Mon May 15 10:45:04 2023
    Millions of Toyota drivers have had data exposed - here's what you need to know

    Date:
    Mon, 15 May 2023 09:23:03 +0000

    Description:
    Toyota customer data was sitting exposed for roughly a decade, but there
    could be a saving grace for owners.

    FULL STORY ======================================================================

    Japanese auto giant Toyota stored sensitive data on millions of vehicles exposed on the internet for a decade, available for anyone who knew where to look, the company has confirmed.

    In a security notice published on the companys newsroom website, the information about the location of 2.15 million Toyota owners was sitting in
    an unprotected cloud database between November 6, 2013, and April 17, 2023.

    "It was discovered that part of the data that Toyota Motor Corporation entrusted to Toyota Connected Corporation to manage had been made public due to misconfiguration of the cloud environment," a translation of the notice reads. Infotainment data

    "After the discovery of this matter, we have implemented measures to block access from the outside, but we are continuing to conduct investigations, including all cloud environments managed by TC. We apologize for causing
    great inconvenience and concern to our customers and related parties." Read more

    Mercedes-Benz USA accidentally leaked customer data


    Your co-workers have probably been involved in a data breach


    Here's our rundown of the best malware removal software right now

    It seems that Toyota kept an unprotected database of customers using its T-Connect G-Link, G-Link Lite, and G-BOOK, its car infotainment system used for things like voice assistance, customer service, car status and
    management, and similar. The data exposed included in-vehicle GPS navigation and terminal ID number, chassis number, as well as vehicle location and time data.

    The silver lining is that the data is pseudonymous, so unless the attackers knew the vehicle identification number (VIN) of their targets car, it was impossible to connect the data with the users. Still, people with physical access to Toyota cars could obtain this number relatively easily.

    Toyota also said theres a possibility that video recordings taken outside the vehicles, were also exposed in the incident. These recordings were being made for almost seven years (November 2016 - April 2023). These are the best firewalls right now

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/millions-of-toyota-drivers-have-had-data-expose d-heres-what-you-need-to-know


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)