Gen 3 Insight Forum banner

1 - 11 of 11 Posts

·
Super Moderator
Joined
·
4,088 Posts
Discussion Starter #1
Honda just can't catch a break right now...

Honda put manufacturing on hold to deal with a “disruption in its computer network” due to a possible cyberattack situation that surfaced Sunday. 'Snake' ransomware locked an internal Honda network Monday. It affected vehicle inspection prior to shipment from factories, so suspended vehicle delivery operations.

Later on Monday, their inspection systems were back up and Honda resumed shipments from domestic factories. Honda Customer Service and Financial Services were also affected by this issue. Honda is confirming whether or not the trouble has impacted operations at its overseas factories, the officials said.

It's also bad news / bad timiing, in that Honda is about to notify 1.4MM owners (globally) about the fuel pump recall. Many of us 2019 Insight owners are expecting messages, and a scammer could take advantage of this... beware!

https://jalopnik.com/honda-seems-to-be-the-victim-of-a-ransomware-attack-1843953940
 

·
Super Moderator
Joined
·
4,088 Posts
Discussion Starter #2
Additional details:
  • The ransomware virus attack was detected on internal servers in Tokyo.
  • The virus impacted email, server access, and the car inspection system (used to check defects before shipping and to register car information) and spread thru it's network to plants around the world, outside of Japan.
  • Most plants started back up in <24 hours, but some plants in US (Ohio), Turkey, Brazil, UK and India remained closed.
  • Ironically (?), plants in Japan were not affected despite the attack originating from there.
  • Neither customer nor employee personally identifiable information 'appears' to be exposed
https://www.engadget.com/honda-cyberattack-suspends-global-production-140545697.html

https://arstechnica.com/information-technology/2020/06/honda-halts-production-at-some-plants-after-being-hit-by-a-cyberattack/
 

·
Super Moderator
Joined
·
4,088 Posts
Discussion Starter #3
  • The processes listed in a static "kill list" showed "a level of intentionality previously absent from ransomware targeting the industrial space" - specifically naming/targeting production line process controls, financial services, and customer service.
  • Honda Finance was unable to “answer calls, fund contracts, provide payoff quotes or service customer accounts.”
  • The automatic parts ordering system for dealers was affected, and dealers were unable to submit new warranty claims (like Insight fuel pump recall!)
  • The company ordered employees not to turn on corporate computers and to temporarily shut factories as the extent of the damage was assessed.
  • Speculation is that new policies for remote employee access during the coronavirus pandemic opened the opportunity for hackers.
  • The last factory, located in Ohio, reopened Thursday morning.
https://www.nytimes.com/2020/06/12/business/ransomware-honda-hacking-factories.html

https://www.darkreading.com/attacks-breaches/ics-threat-snake-ransomware-suspected-in-honda-attack/d/d-id/1338075
 

·
Super Moderator
Joined
·
2,703 Posts
"We are currently experiencing a system outage and some services may not be available.
We are working to resolve this issue as quickly as possible. Thank you for your patience."

I received the above notification from my HondaLink app(android) 2 days ago.
 

·
Super Moderator
Joined
·
4,088 Posts
Discussion Starter #7
Probably why our Honda Link has been down and not working at all.
I wonder if Honda took it down intentionally to cut off the link to cars and uphold their mention of "no customer nor employee personally identifiable information was exposed"... OR if this HondaLink issue is a side effect result of the intrusion.
 

·
Super Moderator
Joined
·
4,088 Posts
Discussion Starter #9
Its hard to contact them right now to find out and who knows if you would get the truth.
Oh, I don't think they'd ever say or admit to one or the other... so it will always be a guess. I think Honda is trying to do damage control at this point - both internally (systems checks/functions) and externally (publicity).

But I do believe that Honda won't put a system like HondaLInk that directly connects to owners back online unless/until they are 100% certain that it is secure. It would be a huge liability and additional negative PR nightmare otherwise.
 

·
Super Moderator
Joined
·
4,088 Posts
Discussion Starter #11
Depending on how long this goes on, they should compensate owners for not getting use of what they paid for.
Good idea. Hopefully they will do just that, similar to the insurance industry refunds for low auto driving/usage during the pandemic.
 
1 - 11 of 11 Posts
Top