Nihon Kotsu, Japan’s largest taxi operator, was forced to temporarily suspend services after a malware attack crippled its dispatch and payment systems. The incident underscores the growing vulnerability of connected vehicle fleets and the transportation sector’s reliance on fragile IT infrastructure.
The attack hit Nihon Kotsu’s central dispatch system, which manages thousands of taxis across Tokyo and other major Japanese cities. With the system offline, the company could not process ride requests, handle electronic payments, or communicate with drivers via standard channels. Service was suspended for several hours while the company worked to contain the incident and restore critical operations.
Japanese authorities have launched an investigation into the attack, which appears to have exploited vulnerabilities in the company’s legacy IT systems. Modern taxi fleets increasingly rely on interconnected platforms that handle dispatch, navigation, payment processing, and driver communications — creating a broad attack surface that sophisticated threat actors can exploit. The disruption to a major transportation provider highlights the real-world consequences of cyber attacks on connected vehicle ecosystems.
For the automotive and transportation industry, the Nihon Kotsu incident serves as a stark reminder that cybersecurity extends beyond individual vehicles to the entire operational technology stack that keeps fleets running. Fleet operators should conduct thorough security assessments of dispatch systems, implement network segmentation between IT and operational systems, and maintain offline backup procedures for critical dispatch functions.
