Toyota Shut Down Japanese Plants In A Supply Chain Attack

The world’s largest car-maker Toyota Motor Corp. has shut down plants across Japan and the factories of two subsidiaries Hino and Daihatsu after a cyber attack and it is unclear when production might resume.  The attack was on one of the car maker’s largest parts suppliers and this means that the company will suspend 28 lines at 14 plants. 

These events highlight the particular vulnerability of manufacturing industry to such attacks, and the substantial consequences a breach can cause.

The decision by Toyota comes as governments around the world warn companies of cyber attack risks following Russia’s invasion of Ukraine. Senior Japanese officials have said they feared leading companies were now targets for reprisals after the government joined other G7 industrial nations in applying tougher sanctions against Russia.
Toyota, which did not specify the nature of the attack nor identify Russia as a source, said it would stop production at all 14 domestic plants. Toyota employs more than 70,000 workers in Japan. 

Toyota said the shutdown followed “system failures at a domestic supplier”, which it later identified as the general component maker Kojima Press Industries. The car maker has said that this shut-down would reduce production by 13,000 vehicles. It is investigating when it can resume production operations.  Japanese media, without citing sources, reported the attack on Kojima appeared to have affected Toyota’s system for making and receiving orders for parts.

  • Kojima Press Industries’ said it had been attacked by a targeted virus from outside, adding that it was considering informing the police. Japan’s ministry of economy, trade and industry said in a statement: “Given the current situation, the potential risk of cyber attacks is increasing.”
  • Japan’s Prime Minister Fumio Kishida told reporters that the country had decided to join western nations in removing some of Russia’s banks from the Swift global payments system. Officials at the cabinet secretariat’s cyber security centre said they were aware of the reports and were gathering information with the ministry of industry, but said they could not determine where the attack originated. 

One adviser to the Japanese government on cyber security issues said concerns were rising that Russian president Vladimir Putin had unleashed hackers with orders to attack targets in countries that were prominent supporters of Ukraine. 

“Normally, you would look at an attack on Toyota or Kojima as financially motivated, but there does not seem to be evidence of that here,” said the adviser.  

Toyota has already been forced to adjust production goals because of pandemic-related supply chain issues and the global chip shortage.

Asian Nikkei:       Reuters:      FT.com:   Arab News:     DenbighshireFP:       Techmonitor

You Might Also Read: 

Honda Hit By Ransomware:

 

« Russian Cyber Crime Group Issues A Warning
The Online Battle In Ukraine »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Firebrand

Firebrand

Firebrand is the leader in Accelerated Learning in the field of IT and project management.

Cura Software Solutions

Cura Software Solutions

Cura Software Solutions (formerly Cura Technologies) is a market-leader in Governance, Risk and Compliance (GRC) enterprise applications.

Centripetal Networks

Centripetal Networks

Centripetal Networks was founded with one vision - to protect networks from advanced threats by simplifying intelligence-driven security.

Cybersecurity Philippines CERT (CSP-CERT)

Cybersecurity Philippines CERT (CSP-CERT)

Cybersecurity Philippines CERT is the national Computer Emergency Response Team for the Philippines.

NESEC

NESEC

NESEC is a specialist in information security consulting services and solutions.

Entersekt

Entersekt

Entersekt is an innovator in push-based authentication and app security.

Computing Technology Industry Association (CompTIA)

Computing Technology Industry Association (CompTIA)

CompTIA is dedicated to advancing industry growth through its educational programs, market research, networking events, professional certifications, and public policy advocacy.

Pathway Forensics

Pathway Forensics

Pathway Forensics is a leading provider of computer forensics, e-discovery services and digital investigations.

CyberCareers.gov

CyberCareers.gov

CyberCareers.gov is a platform for Cybersecurity Job Seekers, Federal Hiring Managers and Supervisors, Current Federal Cybersecurity Employees, Students and Universities.

Thistle Technologies

Thistle Technologies

Thistle Technologies is building tools that help connected device manufacturers build security resiliency into devices.

Hybrid Identity Protection Conference (HIP)

Hybrid Identity Protection Conference (HIP)

Hybrid Identity Protection (HIP) is the premier educational forum for identity-centric cybersecurity practitioners charged with defending hybrid cloud environments.

WhizHack Technologies

WhizHack Technologies

WhizHack's mission is to not only create a pipeline of cyber security products but also to empower people to sustainable innovation in securing digital assets of tomorrow.

FTCYBER

FTCYBER

FTCYBER offers the latest technology and data recovery services to identify and extract data from computers and other digital devices.

TriCIS

TriCIS

TriCIS design and engineer highly secure integrated solutions that meet the highest government and military security standards, providing information assurance to organisations across the globe.

OSP Cyber Academy

OSP Cyber Academy

OSP Cyber Academy are a managed service provider of cyber, information security and data protection training.

Clarity

Clarity

Clarity is an AI cybersecurity startup that protects against deepfakes and new social engineering and phishing attack vectors accelerated by the rapid adoption of Generative AI.