Tata Motors Fixes Security Flaws Exposing Customer and Company Data
Indian automotive giant Tata Motors has fixed security flaws that exposed sensitive internal data, including customer personal information, company reports, and dealer data.
A security researcher, Eaton Zveare, discovered the flaws in Tata Motors' E-Dukaan unit, an e-commerce portal for buying spare parts for commercial vehicles.
The portal's web source code included private keys to access and modify data within Tata Motors' Amazon Web Services account.
Tata Motors, headquartered in Mumbai, produces passenger cars, commercial, and defense vehicles, with a presence in 125 countries and seven assembly facilities.
Author's summary: Tata Motors fixes security flaws exposing data.
- Security flaws exposed customer personal information
- Internal company reports and dealer data were also exposed
- Flaws were discovered in the E-Dukaan e-commerce portal