The collection is 20 GB large and includes source code of a range of Nissan services including NissanConnect.
Swiss software engineer Tillie Kottmann discovered that Nissan North America’s mobile app, market research tools, diagnostics tools, and data assets’ source code was leaked online. Here is what we know about the data leak so far.
Nissan Source Code Leaked:
Nissan’s source code was leaked because of a misconfigured Git server of the company. The company secures the server with the default access credentials (username and password) of admin/admin.
See: Microsoft reveals hackers viewed its source code
Reportedly, multiple code repositories of the company were exposed online. It isn’t yet clear whether Nissan learned about the leak itself or was it tipped by someone.
A post on a hacker forum explaining what happened. (Image: Hackread.com)
20 GB of Data Exposed
According to Kottmann, the exposed repository stored critical data assets of Nissan North America. The collection is 20 GB large and includes source code of a range of Nissan services including NissanConnect.
The researcher also posted a list of services impacted by the leak:
Nissan NA Mobile apps
Parts of the ASIST Diagnostic System software
Dealer Business Systems/Dealer Portal
Nissan internal core mobile library
Nissan/Infiniti NCAR/ICAR services
Client acquisition and retention tools
Sale/market research tools and data
Various marketing tools
Vehicle logistics portal
Vehicle connected services/Nissan connect things
Various other backends and internal tools
The ex ..
Support the originator by clicking the read the rest link below.
