The American division of carmaker KIA Motors was reportedly hit by the DoppelPaymer ransomware. Bleeping Computer reports.
On February 16, the publication reported difficulties accessing the KIA Motors America (KMA) customer platform, mobile apps and dealer portals.
One Twitter user said that when attempting to take delivery of a new car at a dealership, he was told that the servers were down due to a ransomware attack.
@Kia I went to the Kia dealership in Arizona and signed a new lease, yet the manager told me your computers have been down for 3 days due to Ransomware and has affected Kia all over the USA. Can’t get my car for ???? Now what?
— Amybean 🌊 🌊 🌊 (@amylee62) February 16, 2021
KMA representatives attributed the problems to a large-scale outage, but the publication cited a message from the DoppelPaymer operators. According to them, the attack aimed at the parent company Hyundai Motor America.
Hackers allegedly stole a “huge amount” of data and promised to publish the database if the firm does not pay 404 BTC (~$20.8 million). The attackers added that they would increase the ransom to 600 BTC after a certain period.
“We are aware of reports that KIA was allegedly attacked by ransomware operators. At present we have no evidence that the company itself or any data was affected,” the unit said.
Earlier, hit the game developer Cyberpunk 2077 and “The Witcher.” The company turned to law enforcement, and the hackers began selling the stolen data.
Earlier, demanded 1804 BTC in ransom from electronics maker Foxconn.
Subscribe to ForkLog news on Telegram: ForkLog FEED — the full news stream, ForkLog — the most important news and polls.