Nissan Source Code Leaked via Misconfigured Git Server

Leaked information includes source code of Nissan mobile apps, diagnostics tool, and market research tools and data, among other assets.

Dark Reading Staff, Dark Reading

January 7, 2021

1 Min Read
Dark Reading logo in a gray background | Dark Reading

Nissan North America source code was leaked online due to misconfiguration of a company Git server, which was left exposed online with a default username and password of admin/admin.

Software engineer Tillie Kottmann learned of the leak and analyzed the data, which she shared with ZDNet. The repository reportedly contained Nissan NA mobile apps, parts of the Nissan ASIST diagnostics tool, Nissan's internal core mobile library, Dealer Business Systems and Dealer Portal, client acquisition and retention tools, market research tools and data, vehicle logistics portal, vehicle connected services, and various other back ends and internal tools, she reports.

The Git server was taken offline yesterday after its data began to be shared on Telegram and hacking forums, the report continues. Nissan has confirmed the incident, stating it is "aware of a claim regarding a reported improper disclosure of Nissan's confidential information and source code." The company has reportedly launched an investigation.

Read more details here.

About the Author

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights