JTEKT corporation is a global manufacturer of automotive components, bearings, and machine tools. They also operate in aerospace and industrial manufacturing. They are a company that supports and builds things for these industries.
JTEKT North America recently got hacked and hit with Ransomware. Almost 900GB of data was taken, including data from companies such as BWM, Caterpillar, Rivian, Tesla, and others.
So, what happens when data gets taken? The uses are endless for cyber criminals. Let’s say they get GOOD data (contact info/job titles/addresses/etc.) of who decision makers are at various companies:
- Target them with cyber-attacks to get access to sensitive information
- Target other employees pretending to be, say a CFO, to get a quick payout
- Sell this info on the dark web to more hackers
If the data contains IP, there are endless nefarious uses such as selling to foreign adversaries or rival competitors.
But let’s go back to harvesting GOOD people data. If you pretend to be a CFO, you can ask the CFO’s controller to change bank/payroll info, send money somewhere, pay for a new software, and more.
Now I know you might be thinking: the controller needs to be “dumb enough” to fall for something like this. But unfortunately, this happens EVERY DAY. Not because people are dumb, but because hackers are getting better and better at impersonating and executing their tricks. This makes it such that those who “fall” for their tricks, really aren’t that “dumb.”
So, what tools or services do you need to protect yourself and your company from hacks like this? Tools and services could include:
- Antivirus
- Email Spam Filters
- Network Monitoring
- Vulnerability Scanning
- Penetration Testing
- Logging tools
- Alerting Tools
But MORE importantly, what actions could you be taking? These actions below will help dictate what services and tools you need:
- Risk Assessments
- Incident Response Plan
- Change Management Policy
I could list more actions, but the encompassing “Action” is Governance. How you choose to “govern” your company sets the culture around how your people (including contractors/3rd parties) execute their jobs and use the technology you provide.
That is our key at Sher-Tech. Our Tri-Pod (People, Processes, Technology) is the lens which we see and view business. We must govern the Tri-Pod to ensure we have our people executing the way we want them to, using the technology we give them. And if the governance does not happen, the company is susceptible to more cyber-attacks via any of the three legs.
Back to the headline…
What does this incident mean to you? The key reason this is even a headline, is because of the companies that you HAVE heard of, that are affected. Most of the world has not heard of JTEKT corporation. But Tesla? BMW? Caterpillar? You probably have. JTEKT got hit, but these other companies are caught in the crossfire. Their data got exfiltrated.
You could be JTEKT. Or you could be Tesla. You could get hit, and your clients/partners/3rd party’s data could be at risk (along with your own.) Your partners/3rd parties that have or use your data/info/IP could get hit and your information is now at risk.
The only way forward, to truly protect you and those you work with, is to govern better, or ACTUALLY start governing. Slapping antivirus on everyone’s computers and calling it a day is like walking your dog without a garbage bag. Your dog, maybe not today, but some day, WILL poop on someone else’s lawn and you will not be prepared to pick it up.
But instead of arguing with your neighbors about dog poop, you might be trying to save a client from taking their business elsewhere because they no longer trust you to protect their data.
Reference: Ransomware gang says it hacked BMW and Tesla parts maker JTEKT – Comparitech