Toyota Shut Down Japanese Plants In A Supply Chain Attack

Uploaded on 2022-03-01 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Production-Manufacturing, TECHNOLOGY--Hackers

The world’s largest car-maker Toyota Motor Corp. has shut down plants across Japan and the factories of two subsidiaries Hino and Daihatsu after a cyber attack and it is unclear when production might resume.  The attack was on one of the car maker’s largest parts suppliers and this means that the company will suspend 28 lines at 14 plants. 

These events highlight the particular vulnerability of manufacturing industry to such attacks, and the substantial consequences a breach can cause.

The decision by Toyota comes as governments around the world warn companies of cyber attack risks following Russia’s invasion of Ukraine. Senior Japanese officials have said they feared leading companies were now targets for reprisals after the government joined other G7 industrial nations in applying tougher sanctions against Russia.
Toyota, which did not specify the nature of the attack nor identify Russia as a source, said it would stop production at all 14 domestic plants. Toyota employs more than 70,000 workers in Japan. 

Toyota said the shutdown followed “system failures at a domestic supplier”, which it later identified as the general component maker Kojima Press Industries. The car maker has said that this shut-down would reduce production by 13,000 vehicles. It is investigating when it can resume production operations.  Japanese media, without citing sources, reported the attack on Kojima appeared to have affected Toyota’s system for making and receiving orders for parts.

  • Kojima Press Industries’ said it had been attacked by a targeted virus from outside, adding that it was considering informing the police. Japan’s ministry of economy, trade and industry said in a statement: “Given the current situation, the potential risk of cyber attacks is increasing.”
  • Japan’s Prime Minister Fumio Kishida told reporters that the country had decided to join western nations in removing some of Russia’s banks from the Swift global payments system. Officials at the cabinet secretariat’s cyber security centre said they were aware of the reports and were gathering information with the ministry of industry, but said they could not determine where the attack originated. 

One adviser to the Japanese government on cyber security issues said concerns were rising that Russian president Vladimir Putin had unleashed hackers with orders to attack targets in countries that were prominent supporters of Ukraine. 

“Normally, you would look at an attack on Toyota or Kojima as financially motivated, but there does not seem to be evidence of that here,” said the adviser.  

Toyota has already been forced to adjust production goals because of pandemic-related supply chain issues and the global chip shortage.

Asian Nikkei:       Reuters:      FT.com:   Arab News:     DenbighshireFP:       Techmonitor

You Might Also Read: 

Honda Hit By Ransomware:

 

« Russian Cyber Crime Group Issues A Warning
The Online Battle In Ukraine »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Foregenix

Foregenix

Foregenix are global specialists in Digital Forensics and information security including Penetration testing and Website Security.

Riscure

Riscure

Riscure is a global test lab and tools leader for device security. Core expertise in side channel analysis, fault injection and embedded device software.

GreyCampus

GreyCampus

GreyCampus is a leading provider of training for working professionals in the areas of Project Management, Big Data, Data Science, Service Management, Quality Management and Information Security.

adaware

adaware

adaware is an award-winning security and privacy software provider, empowering users to connect with confidence.

Greenetics Solutions

Greenetics Solutions

Greenetics Solutions is a company focused on providing solutions for information security.

Intrinsyc Technologies

Intrinsyc Technologies

Intrinsyc provides product development services and Edge Computing modules that are helping to take the Internet of Things products to the next level.

Spohn Solutions

Spohn Solutions

Spohn combines highly-experienced staff with a vendor neutral approach to deliver optimal solutions for IT Security and Compliance.

Cyber Security Forum Initiative (CSFI)

Cyber Security Forum Initiative (CSFI)

CSFI is a non-profit organization with a mission to provide Cyber Warfare awareness, guidance, and security solutions through collaboration, education, volunteer work, and training.

Charterhouse Voice & Data

Charterhouse Voice & Data

Charterhouse is your trusted technology partner - designing, provisioning and supporting the technology that underpins your operations including network security and data compliance.

Ampyx Cyber

Ampyx Cyber

Ampyx Cyber (formerly Ampere Industrial Security) is an industrial security firm. We specialize in industrial control systems (ICS) and operational technology (OT) security.

Xalient

Xalient

Xalient is an IT consulting and managed services business, specialising in modern, software-defined networking, security and communications technologies.

Persona

Persona

At Persona, we’re humanizing online identity by helping companies verify that their users are who they say they are.

Upstack

Upstack

UPSTACK - One partner, end-to-end expertise, helping develop the solutions you need – when you need them.

International Association of Financial Crimes Investigators (IAFCI)

International Association of Financial Crimes Investigators (IAFCI)

International Association of Financial Crimes Investigators provides services and information about financial fraud, fraud investigation and fraud prevention.

Datapac

Datapac

Datapac is one of Ireland’s largest and most successful ICT solutions and services providers. We have been at the forefront of technology innovation in Ireland for the past three decades.

Dispel

Dispel

Dispel makes the fastest secure remote access for industrial networks. Built by operators for operators: a zero trust engine for your entire OT, IoT, and xIoT stack.