Kawasaki Motors Europe (KME) confirmed a cyberattack in early September that briefly disrupted its operations, though the company stated the attack was ultimately unsuccessful. As a precaution, KME isolated its servers, and its IT team, alongside external cybersecurity experts, conducted a thorough review before restoring over 90% of server functionality by the following week.
However, the situation escalated when the RansomHub ransomware group claimed responsibility on September 5, alleging it had stolen 487 GB of data from Kawasaki’s network and added the company to its dark web extortion site.
Kawasaki Motors Europe (KME) is facing a ransom threat from the RansomHub group, which has set a deadline to publish stolen data unless their demands are met. While it’s unclear what data was compromised, the involvement of customer information cannot be ruled out.
KME stressed that its business operations, including dealerships, suppliers, and logistics, remain unaffected. The company has also increased system monitoring and tightened security access to prevent future breaches.
RansomHub, a growing ransomware group, has been responsible for at least 210 attacks since February, targeting critical U.S. infrastructure. Despite the claims, Kawasaki has not commented further on the situation.