Two weeks ago, Toyota said it had put the data of more than two million customers on the Internet for a decade. Today, the auto giant said it recently discovered that the data of an additional 260,000 car owners was leaking from its systems.
said Toyota in a statement that it identified another party’s exposed data that was “potentially accessible externally due to a misconfiguration” of its connected cloud service, which allows Toyota customers to get internet services in their vehicles, such as information about their vehicle, in-car entertainment and roadside assistance. car accident or breakdown.
The automaker said it was aware of the misconfiguration after conducting a broader investigation into its cloud environments, after admitting earlier this month that customer data was accessible to anyone over the wider internet.
Toyota said the newly discovered exposed data includes in-vehicle device identifiers and map data displayed on customers’ car navigation systems in Japan, but the information alone does not contain location information and cannot reveal or identify customers. Toyota customers may be affected if they purchased a vehicle as early as December 2007 and their data was released between February 2015 and May 2023.
The automaker said it would notify customers whose information was made public with a separate apology.
Toyota also confirmed that an unknown number of customers outside Japan, particularly in Asia and Oceania, were provided with personal information between October 2016 and May 2023. While the data varies by customer, Toyota said the exposed data could include customer names, mail and email. addresses, a customer identification number issued by Toyota, and the registration and identification numbers of the vehicle. The company said it would notify customers in accordance with local law.
The company said it has no evidence the data was accessed or copied, though Toyota didn’t say what logging, if any, it needs to determine whether data has been exfiltrated from its systems.
TechCrunch has reached out to Toyota for more details, but has not yet received a response.
