Share this article on:
Motorcycle manufacturing giant Kawasaki Motors has disclosed a cyber attack on its European division but clarified that the attack was unsuccessful.
According to a company statement, threat actors attempted to breach the systems of Kawasaki Motors Europe (KME) earlier this month, to which the company responded by isolating its servers.
“KME and its country branches operate a large number of servers, and, as a precaution, it was decided to isolate each one and put a cleansing process in place whereby all data was checked and any suspicious material identified and dealt with,” said the company.
As a result, while KME said the cyber attack was “not successful”, it did result in servers being taken offline and company operations halting.
The company said that at the time of its statement (12 September), almost all of its servers had been restored.
“The KME IT department, IT staff at its branches plus external cyber security advisors spent the following week isolating and health-checking all servers and restoring their interconnectivity,” added KME.
“By the start of the following week, over 90 per cent of server functionality was restored and, despite the need to ensure that each and every server was free of non-authorised information, normal business had been resumed in respect of dealers, business administration and third-party suppliers such as logistics companies.”
Despite the claims the attack was unsuccessful, the KME was listed on the dark web leak site of the RansomHub ransomware gang, which now says it has published company data.
Based on the file tree of data posted by the threat group, data potentially includes phone numbers, finance information, dealer information, trading terms, COVID-19 data and more.
Cyber Daily is unable to verify the legitimacy of the data or whether any customer data was included.