Cyber Incident Victim: Toyota Auto Parts Manufacturing Mississippi

On or around May 14, 2021, Toyota subsidiary Auto Parts Manufacturing Mississippi experienced a ransomware attack. The incident involved unauthorized third-party access that resulted in the exfiltration and exposure of financial and customer data. Attackers employed this data exposure tactic to pressure the company into meeting financial demands. Auto Parts Manufacturing Mississippi confirmed the breach but did not pay the ransom. Operations continued without disruption despite the compromise. The company publicly disclosed the incident through statements reported by multiple Japanese media outlets. No further details regarding the specific ransomware variant, attack vectors, or exact scope of compromised records were provided in available reports. The subsidiary initiated response protocols but did not specify containment measures beyond preventing operational interruptions.

Separately, Toyota subsidiary Daihatsu Diesel Company experienced a cyber attack on its European operations around the same timeframe, with file server access issues detected on May 14, 2021. Daihatsu confirmed unauthorized third-party access as the cause and limited the incident's spread to other offices while launching an investigation. These twin incidents occurred amid broader operational challenges for Toyota, including a June 2021 decision to halt three production lines across two Japanese plants due to parts shortages. Toyota's official announcement did not attribute the production halt to cyber incidents or silicon shortages, though industry analysts widely cited semiconductor supply constraints. The automaker maintained normal operations across its remaining 29 production lines at 14 plants during this period. Toyota Japan issued public apologies for production disruptions while emphasizing the limited scale of manufacturing impacts relative to its global capacity.