If Kia does not pay, hackers will release the stolen data.
Hyundai Motor America has experienced an IT outage that affects a small number of customer-facing systems. These systems are currently being restored to normal. We thank our customers for their patience. We can confirm that there is no evidence that Hyundai Motor America’s data or Hyundai Motor America has been ransomware-infected.Kia Motors America, Inc. (“Kia”) is experiencing an extended system outage since Saturday. However, we can confirm that both the UVO app (and owner’s portal) are now functional. The remaining affected systems that are directly accessible to customers will be restored within 24-48 hours. We will prioritize our most critical systems. We are sorry for any inconvenience caused to customers affected by winter storms. Especially those who were most affected by the outage of the remote start and heating feature, we apologize. Kia is fully focused on resolving the issue and thanks our customers for their patience.
Online speculation has suggested that Kia may be under ransomware attack. Based on the most recent information available, we are unable to confirm that Kia, or any Kia data, is being ransomware attacked.
We have contacted Hyundai and Kia to confirm the details. According to Breeping Computer, hackers have attacked Kia Motors America. They have allegedly made it impossible for the automaker’s UVO Link apps to function properly, as well as its payment system and sites used by dealers, to pay ransomware. To decrypt the data, hackers request 404.5833 bitcoin. At current prices, this amounts to $20,899 559.53. If Kia does not pay the ransom in a timely manner, the ransom will increase to 600 bitcoin ($30.994,200).
Bleeping computer also received the ransom note the hackers sent to Kia. The letter states that Kia must contact the hackers within three days or a portion would be made public if she doesn’t. The demands don’t specify what kind of data this hack took.
Motor1.com reached to Kia to get more information about the attack’s current status and the company’s intentions. The automaker stated that it wasn’t ransomware in a statement to Bleeping Computer dated February 17. “We also know of online speculation that Kia has been the victim to ransomware attacks. “At this point, we can confirm that there is no evidence that Kia or any Kia data has been subject to a ransomware attack,” the announcement stated.
It is odd that the letter addressed Hyundai Motor America, which is closely associated with Kia. It doesn’t appear that Hyundai has been affected by the attack at this point, but motor1.com is reaching back to the automaker to confirm.
Hacks and ransomware attacks pose a greater risk to automakers’ businesses as they use more networked technology. Ransomware attacks in 2017 caused Renault to temporarily stop production in France, while Nissan had to do so in the UK.