Hacking India's largest automaker: Tata Motors

6 months ago

Exposed AWS keys on Tata Motors' public websites revealed over 70 TB of sensitive data across hundreds of buckets.
Pointless AWS key encryption was easily defeated, compromising critical infrastructure.
A Tableau backdoor allowed unauthorized access to internal projects, financial reports, and dealer dashboards without a password.
An exposed Azuga API key compromised Tata Motors' test drive fleet management system.
Tata Motors was slow to remediate the issues despite multiple reports and follow-ups.
The vulnerabilities highlighted significant security gaps in India's largest automaker.

Hasty Briefsbeta