Medusa Group publishes all Toyota FS data on the dark web

B2B Cyber ​​Security ShortNews

Share post

After the Medusa Group's successful attack and data theft on Toyota Financial Services (TFS), the group demanded $8 million to delete the data. Since Toyota didn't pay, all the data is now available on the darknet.

The attack on Toyota Financial Services Europe & Africa (TFS) took place on November 14.11.2023, XNUMX. Shortly thereafter, TFS released a notice that all networks had been shut down as a precautionary measure due to unauthorized activity on the systems.

Advertising

Blackmail countdown has expired

🔎 After the countdown expired and the ransom was not paid, the Medusa Group placed the data stolen from Toyota Financial Services on the darknet (Image: B2B-CS).

Shortly after the report by TFS, the Medusa Group published a note on its leak page that Toyota Financial Services (TFS) has been successfully attacked and is now demanding a ransom of $8 millionto delete the data. The countdown has been over for some time now, but the data has now been placed on the dark web. File samples show many tables and letters in small screenshots.

Now TFS has also reacted and sent all affected customers a letter informing them of the data loss. In it, TFS writes: "...we would like to inform you about an incident that affects your personal data. What happened? After we, Toyota Kreditbank GmbH ("TKG"), noticed unusual activity on our network, we immediately initiated an internal investigation into the incident, which we are conducting with the support of a leading cybersecurity company. In the course of the ongoing investigations, we have found indications that an unauthorized party has gained access to certain TKG files...According to our current knowledge, this information also includes personal data that concerns you."

Informed customers about data loss

"Which personal data is affected? According to the current status of the investigation, your surname, first name, the postcode of your place of residence and possibly other contract information such as contract amount, possible dunning status and your IBAN (International Bank Account Number) are affected..."

According to various media, TFS was unable to collect any leasing or loan installments and now has some work to do. At least Toyota is also continuing the trend of not paying in the event of blackmail. More and more companies are taking this route. After all, every unpaid Bitcoin is less money for further attacks. There are now even voices in the USA that want to legally ban paying a ransom.

More at Toyota.eu

 

Matching articles on the topic

Security risks due to employee behavior

A new study shows that companies must not only manage but also secure employee data access. The reason: Many ➡ Read more

Easily reset Amazon S3 records

With the new Clumio Backtrack functionality from Commvault, companies can now back up objects stored in Amazon Simple Storage Service (Amazon S3) or ➡ Read more

BSI: Critical 9.3 vulnerability in PaloAlto Networks Expedition

The BSI urgently warns of a critical vulnerability in the next-generation firewall (NGFW) platform PaloAlto Networks Expedition with a CVSS score of 9.3 out of 10. ➡ Read more

Highly dangerous vulnerabilities in Firefox and Thunderbird 

Mozilla released several security updates for Firefox and Thunderbird on January 7, 2025 to address high-priority vulnerabilities. ➡ Read more

Ransomware attack on Fraunhofer Institute

A ransomware attack hit the Fraunhofer Institute for Industrial Engineering IAO in Stuttgart on December 27, 2024. The institute ➡ Read more

Deepnude AI Image Generator as bait

Recently, cybersecurity experts from Silent Push presented a new attack tactic from the FIN7 threat group in a blog post. The cybercriminals use ➡ Read more

Predictions for 2025

The cybersecurity landscape is evolving at a breathtaking pace. Some critical developments are already emerging for 2025 that will particularly affect companies ➡ Read more

Protection against AI jailbreaks through open source tool 

FuzzyAI, an open source framework, has so far found an AI jailbreak for every model tested. It helps companies identify vulnerabilities in their AI models ➡ Read more