Fujitsu Limited, the largest Japanese IT services provider, has announced that several of the company's computers have been compromised with malware, leading to a possible data breach.
The company published the security notice late last Friday, and said that after an internal investigation, they found that files containing personal information and customer information might have been compromised/exfiltrated.
The affected computers have been disconnected and the company has strengthened the monitoring of other business computers, Fujitsu said.
An investigating into the circumstances surrounding the malware's intrusion and whether any information has been leaked is ongoing.
They also stated that there have been no reports of personal information being misused - though that doesn't mean much if the breach happened recently.
Fujitsu didn't say when they noticed the compromise, didn't share a timeline of the attack, and didn't identify the specific malware used by the attackers.
In June 2023, the Japanese Ministry of Internal Affairs and Communications issued a public reprimand to Fujitsu Cloud Technologies, a subsidiary of Fujitsu Limited that will soon merge with its parent company.
The Ministry demanded from Fujitsu Cloud Technologies and Fujitsu Limited an immediate implementation of security measures to protect the confidentiality of communications and to raise their cybersecurity posture.
Fujitsu was also involved in a supply-chain attack in May 2021.
Its project management suite, Fujitsu ProjectWEB, was accessed by an unauthorized third party and the incident resulted in a data breach affecting several Japanese government agencies.
The company later discontinued the ProjectWEB portal/tool.
This Cyber News was published on www.helpnetsecurity.com. Publication date: Mon, 18 Mar 2024 20:43:05 +0000