Japanese electronics giant Casio has confirmed that a ransomware attack in October compromised the personal information of approximately 8,500 individuals, according to TechCrunch.
The cyberattack occurred on October 5, when hackers infiltrated Casio’s systems, gaining access to sensitive data and rendering several company systems inoperable. An underground ransomware group has claimed responsibility for the attack, alleging it exfiltrated over 200GB of data from Casio’s systems.
In an update on Tuesday, Casio revealed that the hackers, identified by cybersecurity experts as being linked to the Russia-affiliated cybercriminal group known as RomCom or Storm-0978, accessed the personal data of around 8,500 people.
Data Compromised
Casio disclosed that the breach affected the following groups:
- Employees: The personal data of approximately 6,500 employees were accessed, including names, employee numbers, email addresses, and, in some cases, gender, date of birth, ID details, family information, and taxpayer identification numbers.
- Business Partners: Over 1,900 business partners had their names, email addresses, phone numbers, and identification details exposed.
- Customers: The personal information of 91 customers was also leaked. However, Casio confirmed that no credit card information was compromised, as the affected systems did not store such data.
Breach Details and Response
Casio stated that the hackers infiltrated its systems using phishing emails and exploited certain security vulnerabilities. The company clarified that it did not engage in negotiations with the hackers or comply with their demands.
While Casio has restored many of the services affected by the ransomware attack, some remain offline. The company has not specified which services are yet to be fully operational.
Casio reiterated its commitment to improving its cybersecurity measures and minimizing risks following this breach.
