Kawasaki Motors Europe (KME) hit by cyberattack, RansomHub gang claims responsibility

Kawasaki Motors Europe (KME), a subsidiary of Kawasaki Heavy Industries, has confirmed that it was the target of a cyberattack in early September 2024, which led to temporary disruptions in its operations. Kawasaki Motors Europe N.V., the European base of Kawasaki Motors, is in Hoofddorp, Netherlands.

The company initially reported that the attack was "not successful," but it resulted in the precautionary temporary server isolation and operational disruption at Kawasaki Motors Europe. Over 90% of server functionality had been restored by the beginning of the following week.

The attack was claimed by the RansomHub ransomware gang . They allege to have stolen 487 GB of data from Kawasaki Motors Europe’s networks and added the company to its dark web extortion portal.

As of now, the nature of the compromised data remains unclear, but there is a possibility that customer information could be involved.

Kawasaki Motors Europe has emphasized that business operations, including dealerships, third-party suppliers, and logistics, have not been impacted by the incident, but has not provided additional comments in response to the claims made by RansomHub.

Update - as of 16th of September 2024, the RansomHub ransomware group has leaked 487 gigabytes of data on its Tor-based site, allegedly stolen from Kawasaki Motors Europe (KME) after the company refused to pay a ransom. KME has not confirmed whether the leaked data is from their servers, while RansomHub posted the information