Nippon Steel Solutions has disclosed a significant data breach affecting customer, partner, and employee personal information following a zero-day cyber attack that exploited a previously unknown software vulnerability in their network infrastructure. The incident, detected on March 7, 2025, represents a serious security compromise that has prompted the company to implement immediate containment measures and launch a comprehensive investigation with external cybersecurity specialists. Partner information at risk encompasses names and business email addresses using company domain addresses provided by Nippon Steel. The investigation revealed that unauthorized third-party actors had successfully penetrated the company’s internal network through a zero-day attack targeting network equipment vulnerabilities that were previously unknown to security researchers and vendors. Notably, the company has emphasized that its cloud services provided to customers remain unaffected by this security incident, limiting the breach’s impact to internal network systems only. Customer data potentially compromised includes names, company names, organizational affiliations, job titles, company addresses, business email addresses, and phone numbers. Upon detection, the company immediately isolated the compromised systems from its network and engaged external cybersecurity experts to assess the full scope of the intrusion. Employee data potentially accessed includes names, department information, positions, and business email addresses. The company has consulted with law enforcement authorities and submitted required reports to the Personal Information Protection Commission in compliance with regulatory requirements. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis.
This Cyber News was published on cybersecuritynews.com. Publication date: Tue, 08 Jul 2025 18:00:14 +0000