Toyota has exposed the location data of 2.3 million customers for over a decade. The information was accessible due to a security breach in their sales module. The data included customers’ names, email addresses, and vehicle identification numbers (VINs). The breach occurred in Japan, but the data of customers from several countries, including the US and UK, were exposed. The company discovered the breach in March 2021, and an investigation was launched immediately.
Toyota confirmed that there was no evidence of data misuse or theft.
The company has informed all affected customers and has promised to improve its security measures. The incident has raised concerns about the lack of cybersecurity measures in the automobile industry. This is not the first time Toyota has suffered a data breach; in 2019, the company was hit by a cyberattack that disrupted its operations.
Toyota’s reputation has been tarnished due to the breach, and it may face legal consequences for failing to protect customers’ personal information.