Data breach exposes vulnerabilities at GM, Ford, Tesla, Toyota and dozens more

Data breach exposes vulnerabilities at GM, Ford, Tesla, Toyota and dozens more

A few months ago in episode 59 of the Cocktail Investing podcast, we discussed the looming cybersecurity threats to be had in the corporate supply chain. After that conversation, we figured it was only a matter of time until a high profile supply chain attack occurred. It was only a matter of months until the vulnerabilities for several automotive companies and their suppliers were exposed. How they address it means more spending associated with our Safety & Security investing theme.

To check out our latest Cocktail Investing podcast, click here.

 

Security researcher UpGuard Cyber Risk disclosed Friday that sensitive documents from more than 100 manufacturing companies, including GM, Fiat Chrysler, Ford, Tesla, Toyota, ThyssenKrupp, and VW were exposed on a publicly accessible server belonging to Level One Robotics.

The exposure via Level One Robotics, which provides industrial automation services, came through rsync, a common file transfer protocol that’s used to backup large data sets, according to UpGuard Cyber Risk. The data breach was first reported by the New York Times.

According to the security researchers, restrictions weren’t placed on the rsync server. This means that any rsync client that connected to the rsync port had access to download this data. UpGuard Cyber Risk published its account of how it discovered the data breach to show how a company within a supply chain can affect large companies with seemingly tight security protocols.

This means if someone knew where to look they could access trade secrets closely protected by automakers.

Source: Data breach exposes trade secrets of carmakers GM, Ford, Tesla, Toyota | TechCrunch

About the Author

Chris Versace, Chief Investment Officer
I'm the Chief Investment Officer of Tematica Research and editor of Tematica Investing newsletter. All of that capitalizes on my near 20 years in the investment industry, nearly all of it breaking down industries and recommending stocks. In that time, I've been ranked an All Star Analyst by Zacks Investment Research and my efforts in analyzing industries, companies and equities have been recognized by both Institutional Investor and Thomson Reuters’ StarMine Monitor. In my travels, I've covered cyclicals, tech and more, which gives me a different vantage point, one that uses not only an ecosystem or food chain perspective, but one that also examines demographics, economics, psychographics and more when formulating my investment views. The question I most often get is "Are you related to…."

Comments are closed.