Honda Rebounds From Cyber Attack; So, What Happened?
<img data-attachment-id="1724288" data-permalink="https://www.thetruthaboutcars.com/2020/06/honda-rebounds-from-cyber-attack-so-what-happened/shutterstock_684625447/" data-orig-file="https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447.jpg" data-orig-size="1000,667" data-comments-opened="1" data-image-meta="{"aperture":"0","credit":"","camera":"","caption":"","created_timestamp":"0","copyright":"","focal_length":"0","iso":"0","shutter_speed":"0","title":"","orientation":"0"}" data-image-title="honda grille honda logo" data-image-description="
Anastasiia Moiseieva/Shutterstock
" data-medium-file="https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447-450x300.jpg" data-large-file="https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447-610x407.jpg" class="aligncenter size-large wp-image-1724288" src="https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447-610x407.jpg" alt="" width="300"610" height="400"407" srcset="https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447-610x407.jpg 610w, https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447-75x50.jpg 75w, https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447-450x300.jpg 450w, https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447-768x512.jpg 768w, https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447-120x80.jpg 120w, https://www.thetruthaboutcars.com/wp-content/uploads/2020/06/shutterstock_684625447.jpg 1000w" sizes="(max-width: 610px) 100vw, 610px" />
Struck by a cyber attack on its global computer network that temporarily knocked out a few factories and most of its customer service centers, Honda is reporting that things are gradually returning to normal.
āWork is being undertaken to minimize the impact and to restore full functionality of production, sales and development activities,ā the company said in a statement earlier this week.
Impacted facilities are supposedly already in decent shape, and the business hopes to move past this in short order.Ā But what actually happened?Ā
According to the informed nerds at Tech Crunch, Honda was made subject to āSnake ransomware.ā TheĀ file-encrypting malware basically jumbles all the data on a network (or access to it) so it cannot be used by its owner and can beĀ rescinded after the criminals are paid offĀ ā usually with digital currencies. Honda said that it doesnāt believe any files were pulled but its network had been held for ransom by unsavory actors. It also admitted that it didnāt have all the answers just yet.
Factories, including the plant in Marysville, Ohio, are said to be resuming operations today or tomorrow. Customer service is still reporting issues, however. There are also lingering concerns from experts that the corporation could be vulnerable to subsequent attacks until a rigorous investigation has been completed.
From Tech Crunch:
Brett Callow, a threat analyst at security firm Emsisoft, said a sample of the file-encrypting malware was uploaded to VirusTotal, a malware analysis service, referencing an internal Honda subdomain, mds.honda.com.
āThe ransomware will only encrypt files on systems capable of resolving this domain but, as the domain does not exist on the clear net, most systems would not be able to resolve it. mds.honda.com may well exist on the internal nameserver used by Hondaās intranet, so this is a fairly solid indicator that Honda was indeed hit by Snake,ā said Callow.
Honda finds itself in similar company to IT giant Cognizant, cyber insurer Chubb, and defense contractor CPI, all of which were hit by ransomware this year.
Honda was hit with ransomware before, in 2017Ā ā along with Renault, Nissan, Dacia and a bunch of other companies we donāt care about because they donāt build cars. Itās no stranger to digital shenanigans. But the aforementioned WannaCry attacks havenāt made it invulnerable to similar intrusions. Likewise, a lot of the more recent cyber attacks are presumed to haveĀ state backing due to their increasing levels of complexity. We donāt envy corporations having to contend with these attacks, least of all now that they seem to be coded by professionals.
Honda hasnāt mentioned what was lost in the attack, or even if it caved to the demands.Ā For what itās worth, it did say that there was āno current evidence of loss of personally identifiable informationā and that most facilities are already operational. Letās hope it stays that way.
Ā
[Image:Ā Anastasiia Moiseieva/Shutterstock]
Related
window.fbAsyncInit = function() {
// init the FB JS SDK
FB.init({
appId : '188113863264', // App ID from the app dashboard
channelUrl : '//www.thetruthaboutcars.com/channel.html', // Channel file for x-domain comms
status : true, // Check Facebook Login status
xfbml : true // Look for social plugins on the page
});
// Additional initialization code such as adding Event Listeners goes here
};
// Load the SDK asynchronously
(function(d, s, id){
var js, fjs = d.getElementsByTagName(s)[0];
if (d.getElementById(id)) {return;}
js = d.createElement(s); js.id = id;
js.src = "https://connect.facebook.net/en_GB/all.js";
fjs.parentNode.insertBefore(js, fjs);
}(document, 'script', 'facebook-jssdk'));
//toggles mobile navigation
let mobileMenu = document.getElementById('mobileHeader');
let siteMobile = document.getElementById('main-wrapper');
let mobileBtn = document.querySelector('.hamburger');
mobileBtn.addEventListener('click', function() {
if (siteMobile.classList.contains('menuOpen')) {
siteMobile.classList.remove('menuOpen');
document.documentElement.classList.remove('noScroll');
document.body.classList.remove('noScroll');
} else {
siteMobile.classList.add('menuOpen');
document.documentElement.classList.add('noScroll');
document.body.classList.add('noScroll');
}
});
(function($) {
// Hide Header on on scroll down
var didScroll;
var lastScrollTop = 0;
var delta = 5;
var navbarHeight = $('#mobileHeader').outerHeight();
$(window).scroll(function(event){
if ($(window).innerWidth() = 150) {
didScroll = true;
} else {
$('#main-wrapper').removeAttr('class');
}
}
});
setInterval(function() {
if (didScroll) {
hasScrolled();
didScroll = false;
}
}, 250);
function hasScrolled() {
var st = $(this).scrollTop();
// Make sure they scroll more than delta
if(Math.abs(lastScrollTop - st) lastScrollTop && st > navbarHeight){
// Scroll Down
if ($('#main-wrapper').hasClass('sticky')) {
$('#main-wrapper').removeClass('sticky').addClass('backUp');
setTimeout(function() {
$('#main-wrapper').removeClass('backUp');
},350);
}
} else {
// Scroll Up
if(st + $(window).height() < $(document).height()) {
$('#main-wrapper').removeClass('backUp').addClass('sticky');
}
}
lastScrollTop = st;
}
})( jQuery );
(function(d, s, id){
var js, fjs = d.getElementsByTagName(s)[0];
if (d.getElementById(id)) {return;}
js = d.createElement(s); js.id = id;
js.src = "https://connect.facebook.net/en_GB/all.js";
fjs.parentNode.insertBefore(js, fjs);
}(document, 'script', 'facebook-jssdk'));
Gloss