Yazılar

Tata Motors Said to Fix E-Dukaan and FleetEdge Vulnerabilities Following AWS Key Exposure

/in /tarafından

Tata Motors reportedly addressed several critical security flaws in two of its digital platforms — E-Dukaan and FleetEdge — following a disclosure from an independent cybersecurity researcher. According to the report, the vulnerabilities were identified in 2023 and were serious enough to potentially expose sensitive company data. The flaws were said to have revealed Amazon Web Services (AWS) access keys, which, if exploited, could have allowed attackers to download confidential information or upload malicious files to Tata Motors’ cloud servers.

Researcher Flags Data Exposure Risks

Cybersecurity researcher Eaton Zveare, who has previously reported vulnerabilities in major tech platforms, detailed his findings in a blog post published earlier this week. He claimed that Tata Motors’ E-Dukaan platform, the company’s e-commerce portal for vehicle parts, contained misconfigured access that exposed AWS credentials. These credentials, he explained, could have granted full access to the company’s cloud storage, including internal files and sensitive operational data.

FleetEdge Platform Also Found Vulnerable

In addition to E-Dukaan, Zveare also discovered flaws in FleetEdge, Tata Motors’ fleet tracking and management solution. The researcher identified four key vulnerabilities that could have allowed unauthorised users to access restricted data and system resources. He noted that the flaws could be exploited remotely, making them particularly dangerous if discovered by malicious actors.

Tata Motors’ Response and Remediation

Tata Motors was reportedly notified about the security lapses in 2023, and the company acted promptly to patch the exposed endpoints and revoke compromised AWS keys. Following internal investigations, both E-Dukaan and FleetEdge were updated with enhanced authentication and access control mechanisms. The automaker has not disclosed whether any data breaches occurred as a result of the vulnerabilities, but cybersecurity experts have praised the company for its swift response and transparency. The incident underscores the growing cybersecurity challenges facing large automotive companies as they continue expanding into connected and cloud-based services.

Jaguar Land Rover Hack Inflicts $2.5 Billion Blow to UK Economy, Report Finds

/in /tarafından

The cyberattack on Jaguar Land Rover (JLR), owned by India’s Tata Motors (TAMO.NS), has cost the UK economy an estimated £1.9 billion ($2.55 billion) and disrupted more than 5,000 organisations, according to a report published Wednesday by the Cyber Monitoring Centre (CMC).

The CMC, an independent body comprising cybersecurity experts including the former head of Britain’s National Cyber Security Centre, described the August attack as “the most economically damaging cyber event to hit the UK.” Most of the financial fallout, it said, stems from lost manufacturing output across JLR and its suppliers.

JLR was forced to halt production for nearly six weeks, affecting its three UK plants that together produce around 1,000 vehicles per day. The company began resuming operations earlier this month, but analysts estimated losses at roughly £50 million per week during the shutdown.

The British government extended a £1.5 billion loan guarantee in September to help JLR stabilize its supply chain and support affected partners. The CMC warned that total losses could climb higher if production takes longer than expected to return to normal levels.

“This incident highlights the scale of vulnerability in interconnected supply chains,” the CMC said, noting that the breach disrupted not only JLR’s assembly lines but also dealerships and logistics providers.

The attack was classified as a Category 3 systemic event — the third-highest severity level on the CMC’s five-tier scale — due to its widespread economic ripple effects.

The report also placed the incident among a series of major British cyber breaches in 2025, including one at Marks & Spencer (MKS.L) in April that caused an estimated £300 million ($400 million) in losses after shutting down its online platform for two months.

JLR declined to comment on the findings but is expected to release its financial results in November. The CMC report, which is funded by the insurance industry, said the event underscores the growing systemic risk cyberattacks pose to the UK’s industrial and economic stability.

Tata Technologies’ Q2 profit rises 5% as non-automotive business offsets auto slowdown

/in /tarafından

Tata Technologies (TATE.NS) reported a 5% increase in second-quarter profit on Friday, helped by growth in its non-automotive segments that offset weakness in its core auto-focused business.

The Indian engineering and technology services company, which provides product design, engineering, and manufacturing digitalisation solutions, said net profit rose to 1.66 billion rupees ($19 million) in the three months ending September, up from 1.57 billion rupees a year earlier.

Revenue climbed 2% to 13.23 billion rupees ($150.3 million), driven largely by its smaller technology solutions division, which posted 6.6% growth during the quarter. The company’s services segment, which accounts for 77% of overall revenue, remained flat amid cautious spending from automotive clients.

Tata Technologies, which counts Jaguar Land Rover and Tata Motors among its top customers, has been affected by tariff-driven pressures in the U.S. and Europe that have prompted carmakers to scale back R&D and outsourcing projects, analysts said.

CEO Warren Harris acknowledged that the next quarter could bring “short-term tactical challenges,” but said he expects a strong rebound in Q4 supported by an expanding project pipeline and improving demand trends.

The company’s non-automotive businesses, including aerospace and industrial machinery, continued to show resilience and were key contributors to overall profitability.