At present, there is no clear information. The company is investigating the cause of the problems that were identified on Monday.
This is most likely an attack by SNAKE ransomware
"Honda can confirm that there is a problem with its IT network. "At the moment, an investigation is underway to understand the cause," said a company spokesman.
For now, we know the issues they did not influence Japanese production or commercial activities. In addition, the company's spokesman said no effect on Honda customers.
"In Europe, we are doing research to understand the nature of the impact," Honda said.
X X X X X X X X X X X X X X X X security Vitali Kremez He also said that in addition to checking mds.honda.com, there is a reference to the US IP address. 126.96.36.199.
This IP address directs to hostname “unspec170108.amerhonda.com”.
The above two data show that Honda's network problems were most likely caused by SNAKE ransomware.
The number of affected systems is unclear. However, SNAKE is known to he steals data before encrypting the systems.
Η Honda has had security issues in the past
At the end of July 2019, the security researcher Justin Paine found an unsafe database ElasticSearch contained information about about 300.000 Honda employees around the world, including the CEO.
Another Honda open source ElasticSearch database was also discovered on December 11, 2019 by the security researcher Bob Diachenko. The archives were exposed to the Internet and included customer data in North America.