Tata Motors, one of India’s biggest car companies, recently fixed some important security problems on two of its websites — E-Dukaan and FleetEdge. These websites are used by customers and businesses to buy spare parts and track vehicles. A cybersecurity researcher discovered the issues and reported them, helping Tata Motors make the websites safe again.
How It All Started
In 2023, a cybersecurity expert named Eaton Zveare found some difficulties, called vulnerabilities, in Tata Motors’ websites. These glitches could have allowed hackers to break into the company’s online systems.
He found that both E-Dukaan, which sells vehicle parts online, and FleetEdge, a platform used to manage and track vehicles, were leaking something very complex — Amazon Web Service (AWS) keys. These keys work like passwords that join websites to cloud storage.
If someone got hold of these keys, they could:
- Download private business data
- Upload harmful files
- Increase the company’s cloud bills by storing fake records
What Tata Motors Did
After Zveare informed the corporation, Tata Motors quickly fixed all the issues in the same year. The company told TechCrunch, a technology news site, that it made sure the vulnerabilities were “fully addressed.”
The researcher also noticed another issue in Tableau, a data analytics tool Tata Motors used. This problem could let anyone log in as an admin (without a password) and see important corporation details like:
- Internal project information
- Financial reports
- Dealer dashboards
Luckily, Tata Motors solved this problem too.
Keeping Data Safe
Tata Motors said it regularly checks its online safety with help from top cybersecurity firms. It keeps access logs (records of who enters the system) and works closely with specialists to prevent such attacks.
The company explained that it is committed to keeping client data and its online platforms protected.
About Tata Motors
Tata Motors is one of India’s largest vehicle makers and sells cars in over 125 countries. It started with commercial vehicles and now makes passenger cars and electric vehicles too.
As more modern cars use connected features like screening location and speed through apps, keeping data safe is very significant. By fixing these problems quickly, Tata Motors proved it takes customer security seriously.
