The affected infrastructure is called GSPIMS and is a web application that allows employees and suppliers to manage the supply chain globally. A researcher, who wishes to remain anonymous, has discovered a backdoor in these systems that allows access to the portal with, simply, an email account.

En sus pruebas, The investigator has managed to access numerous confidential documents, internal projects, supplier data and more critical information. Toyota, for its part, confirms that they solved this last 23 November.

The worrying thing about the matter is that a malicious actor could have accessed critical Toyota information and copied the information without altering it.

Fountain: Bleeping Computer


Leave a Reply

Your email address will not be published. Required fields are marked *

More news
A
Read more »
A researcher manages to hack some concert tickets using AI
Read more »
Una nueva campaña de phishing suplanta a ChatGPT
Read more »
Nintendo suffers a data breach through a supplier
Read more »
Trying to make fun of a scammer is not a very good idea
Read more »