Toyota Hack

10165354056?profile=RESIZE_400xJapanese auto giant Toyota said it will restart US domestic production today, a day after all of its factories nationwide ground to a halt following a cyberattack at a parts supplier.  Production lines will be switched back on at its 14 factories across the US, Toyota said in a statement.  Yesterday’s suspension hit output of around 13,000 vehicles, sparking concern about the robustness of cybersecurity in Japan's extensive supply chain.

The issue has emerged as a key area of concern in Japan, where government critics say responses have been hampered by a fractured approach to dealing with hacking threats.  Toyota supplier Kojima Industries Corp, which provides plastic parts and electronic components to the automaker, said it had discovered an error at one of its file servers on 26 February.  After rebooting the server, it confirmed it had been infected with a virus, and found a threatening message, it said in a separate statement.

The message was written in English, a Kojima spokesperson told media sources, but declined to give further details.

The system failure at Kojima meant the supplier was unable to ship parts, forcing Toyota, which does not stockpile components at its plants, to pause production, a Toyota spokesperson said.  Kojima only supplies to Toyota and is a top-tier supplier of some parts, and a second-tier supplier of others, the Kojima spokesperson said.  Toyota's operations in Japan encompass a supply chain of 60,000 companies across four tiers.

Toyota said it would be able to resume operation by tapping into a back-up network between it and the supplier.  It would take a week or two to fully restore the system, it said.  No information was available about who was behind the attack, nor the motive.  It came just after Japan joined Western allies in clamping down on Russia in response to the invasion of Ukraine, although it was unclear whether the attack was related (though Red Sky Alliance believes this attack is likely related).  Kojima said it was in contact with authorities.

The incident at the Toyota supplier exposes a potential weakness for Japanese industry. While big companies have cyber security measures in place, the government is worried about small or mid-level subcontractors, the industry minister, Koichi Hagiuda, told reporters on Tuesday.

In November 2020, Japanese videogame maker Capcom, which makes games including Resident Evil, said a ransomware attack had likely compromised personal information of up to 350,000 gamers, and some of its own financial data had been stolen.

Honda suspended some of its auto and motorcycle production globally in June 2020 after a suspected cyberattack.   Will these type cyber attacks stop?  Highly doubtful. 

Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization who has long collected and analyzed cyber indicators.  For questions, comments or assistance, please contact the office directly at 1-844-492-7225, or    

Weekly Cyber Intelligence Briefings:

Weekly Cyber Intelligence Briefings:

REDSHORTS - Weekly Cyber Intelligence Briefings



E-mail me when people leave their comments –

You need to be a member of Red Sky Alliance to add comments!