Logo Cibersecurity made in Europe Logo UE

Real cases

Data since 2012

Real cases of hacked carsDate
A US transportation company is stopped by a cyber attackDec 2020Read More
Headline A US transportation company is stopped by a cyber attack
Year 2020
Month December
Country United States
Description 

The American transport company Central Freight Lines -specialized in road freight- suffers a cyberattack in the computer systems of its operations and its call center -center for calls and attention to the public and customers to resolve doubts, setbacks, order their services … -. The identity of the attackers is unknown, but it is known that, curiously, they did not ask for ransom for the potentially stolen files.

Intentionality Cracker
Target Company
Company Central Freight Lines
Type of company Transport and Logistics
Data / Life Data
Access Remote
Recognized by brand 
Source https://www.freightwaves.com/news/news-alert-central-freight-lines-falls-victim-to-cyberattack
Kawasaki discovers a spy in their intranetDec 2020Read More
Headline Kawasaki discovers a spy in their intranet
Year 2020
Month December
Country Japan
Description 

The Japanese motorcycle manufacturer Kawasaki discovers illegal access to a server on its internal network located in its home country. According to their investigations, this “back door”- which connected to one of its headquarters in Thailand – had been open for more than a year, which would have allowed a large leak of confidential data.

Intentionality Cracker
Target Company
Company Kawasaki
Type of company Motorcycle manufacturer
Data / Life Data
Access Remote
Recognized by brand 
Source https://hackercar.com/kawasaki-descubre-espia-red-informatica/
Vulnerability is found in a rent a car management platformDec 2020Read More
Headline Vulnerability is found in a rent a car management platform
Year 2020
Month December
Country 
Description 

An independent investigator finds a flaw in the ‘Car Rental Management System 1.0’ platform. It is a fleet manager, developed in open source for use in car rental agencies. A bug in the image upload applet – a component of an application that runs in the context of another program, for example in a web browser – allows you to control the application remotely with administrator privileges.

Intentionality Hacker
Target Other
Company SourceCodester
Type of company Software developer
Data / Life Data
Access Remote
System A fleet manager
Recognized by brand 
Source https://nvd.nist.gov/vuln/detail/CVE-2020-27956#vulnCurrentDescriptionTitle
The data of 21,000 drivers appears for sale on the dark webNov 2020Read More
Headline The data of 21,000 drivers appears for sale on the dark web
Year 2020
Month November
Country United Kingdom
Description 

An attack on the database of a British insurer – whose name is unknown – led to the leakage of the personal data of 21,000 drivers across the UK. The leaked information included names, addresses, contact methods and driver’s license numbers. Shortly after the theft occurred, the data appeared for sale in “street markets” on the Dark Web.

Intentionality Cracker
Target Company
Company British insurance company
Type of company Vehicle insurer
Data / Life Data
Access Aplication
Recognized by brand No
Source https://www.teiss.co.uk/british-motorists-data-hacked/
International automotive dealer suffers an attack by ransomwareDec 2020Read More
Headline International automotive dealer suffers an attack by ransomware
Year 2020
Month December
Country Australia
Description 

The Australian subsidiary of Inchcape – an international automotive distribution and service provider that works with a large number of brands – is undergoing a cyberattack. A group of crackers filters the ‘ransomware’ known as ‘Ransomexx’ on their servers, which encrypts and captures large volumes of sensitive company data. Some of this information has even ended up leaked on the Dark Web.

Intentionality Cracker
Target Company
Company Inchcape
Type of company Automotive Distribution and Services
Data / Life Data
Access Remote
System Company servers
Recognized by brand 
Source https://www.itwire.com/security/auto-services-firm-inchcape-hit-by-windows-ransomexx-ransomware.html
Crackers expose data of a logistics operator in the U.S.Dec 2020Read More
Headline Crackers expose data of a logistics operator in the U.S.
Year 2020
Month December
Country United States
Description 

The american company Cardinal Logistics -located  in North Carolina, United States- and which counts with a fleet of more than 3.100 transportation vehicles, suffered a ransomware attack from the REvil group. When the information hijacking ended -where could be found  confidentiality agreements type NDA, financial information and employees data-, the crackers spread a small amount of confidential data on the Dark Web in response to the company’s refusal to pay the ransom.

Intentionality Cracker
Target Company
Company Cardinal Logistics
Type of company Transport and logistics
Data / Life Data
Access Remote
System Databases
Reach 1
Recognized by brand 
Source https://www.freightwaves.com/news/hackers-leak-data-from-trucking-firm-cardinal-logistics
A vulnerability is found on a ticket sales platformDec 2020Read More
Headline A vulnerability is found on a ticket sales platform
Year 2020
Month December
Country 
Description 

An independent investigator finds a flaw in the ‘Online Bus Ticket Reservation 1.0’ platform. It is a software for the sale of transport tickets, developed in open source to be used by bus companies, whether urban or interurban -for example: Abhibus, Red Bus, Travelyari, APSRTC, TSRTC, Goibibo, Yatra, Makemytrip, Yatragenie… -. A failure in the authentication procedure allows access to the service by entering a simple code in the username and password fields, so the attacker does not need to create a user account on the platform.

Intentionality Hacker
Target Other
Company SourceCodester
Type of company Software developer
Data / Life Data
Access Aplication
System Online platform for booking bus tickets
Recognized by brand 
Source https://www.realinfosec.net/2020/12/08/online-bus-ticket-reservation-1-0-sql-injection/
Police officer arrested for abuse of personal dataDec 2020Read More
Headline Police officer arrested for abuse of personal data
Year 2020
Month December
Country United Kingdom
Description 

A police officer from the island of Guernsey – in the United Kingdom – is arrested for harassing a woman while she is off duty. In the subsequent investigation, the authorities discover that it is a habitual practice of the accused, in which he uses -without authorization- the data of his victims’ vehicles – brands, models, license plates, name and address of the owners … – with in order to locate them.

Intentionality Cracker
Target Other
Company Guernsey Police Department
Type of company Security forces and bodies
Data / Life Data
Access Aplication
System Database
Recognized by brand 
Source https://guernseypress.com/news/2020/12/04/officer-used-police-database-to-contact-nine-women-online/
Vancouver subway system hit by ransomware attackDec 2020Read More
Headline Vancouver subway system hit by ransomware attack
Year 2020
Month December
Country Canada
Description 

TransLink -the company that manages the Vancouver subway- suffered a ransomware attack against its computer network, even paralyzing the provision of the service. The group responsible -called ‘Egregor’- threatens the company with publishing all the stolen data if its financial demands are not met -that is what a ransomware attack is all about-.

Intentionality Cracker
Target Company
Company TransLink
Type of company Public Transport
Data / Life Data
Access Aplication
Recognized by brand 
Source https://globalnews.ca/news/7499986/translink-suspicious-network-activity-update/



Este sitio web utiliza cookies para que usted tenga la mejor experiencia de usuario. Si continúa navegando está dando su consentimiento para la aceptación de las mencionadas cookies y la aceptación de nuestra política de cookies, pinche el enlace para mayor información.plugin cookies

ACEPTAR
Aviso de cookies