Business computer security just got a lot more serious.<p>- Cloud-based factory automation? Unsafe now.<p>- Mandatory remote diagnostics? Unsafe now.<p>- Remote updates? Questionable, and need to be blockable during crisis periods.
Everyone is assuming this is the Russians and that could very well be true. If I were a bad actor from some place other than Russia, now would be a great time to pursue my own objectives and make as much noise as I wanted assuming that Russia would be blamed for it. Maybe even drop some misleading artifacts while I inside someone's network to re-enforce the paranoia. Just saying...
It's really regrettable that "cyberattack" can mean so many very different things, and reporters rarely clarify. Is it a random ransomware infection? Or is it a targeted attack by a national adversary?<p>It really could be either, and they have very different implications!
Nothing mentioned on Toyota's site: <a href="https://global.toyota/en/newsroom/" rel="nofollow">https://global.toyota/en/newsroom/</a><p>Supplier is apparently Kojima Industries, their website is being hammered: <a href="https://www.kojima-tns.co.jp/en/" rel="nofollow">https://www.kojima-tns.co.jp/en/</a>. Or maybe it's down because of the attack?
If only the NSA had been spending the past decade hardening our cyber infrastructure rather than spying on its citizens and keeping found exploits secret from our industries
I think the reality is if a nation state wanted to they could shut down 80%+ of infrastructure (water, power, internet etc) and any domestic manufacturing by attacking something in the supply line. There's terrible security everywhere, you literally have ransom ware groups taking down key infrastructure on accident its so bad. Our insane military budget does nothing to prevent this and it honestly seems almost as bad to me as a few nukes could be.
So I imagine the last 5-10 years of minor squabbling in the news about "Russian Hackers" was just training. I hope we're ready for the full onslaught now.
When I hear stuff like this, I begin to ask questions:<p>Why is your supply chain so vulnerable that a cyberattack on business partner (or multiple) causes you to close down *all* plants in your country? That's insane.<p>That sounds like your supply chain is the key problem here, and the cyberattack is just a smokescreen that is compounding the problem.
Is this just a way to collect on insurance?<p>American factories are closed because of “chip shortages.” It seems way too early to say it was a cyber attack, much less for it to already impact production.