Global electronics manufacturer Casio Computers servers had been compromised in a ransomware attack, resulting in a significant data breach.
The cyberattack, which occurred on October 5, 2024, led to the unauthorized access of sensitive internal documents, including personal information related to employees, business partners, and a small number of customers.
The company publicly apologized for the incident and outlined measures being taken to address the breach and prevent future occurrences.
Following the breach, Casio launched a forensic investigation in collaboration with an external cybersecurity firm.
The investigation confirmed that hackers gained unauthorized access to Casio’s servers from overseas, exploiting vulnerabilities associated with phishing emails and gaps in the company’s global network security, including at overseas offices.
The ransomware attack rendered several systems temporarily unusable and caused a leak of internal documents containing personal information.
Notably, Casio emphasized that no customer database or credit card information was compromised.
However, sensitive data regarding employees, business partners, and customers was confirmed to have been leaked.
Details of the Leaked Information
According to the Casio Statement, the leaked data includes the following:
Here is the information summarized in a table format:
Category | Details | Number of People |
---|---|---|
Employees | ||
Total Employees (including temp) | Total number of employees (includes temporary/contract employees). | 6,456 |
Domestic Employees | Name, employee number, email address, affiliation. | 5,509 |
Additional Data for 10 Employees | Gender, date of birth, and ID card information. | 10 |
Additional Data for 97 Employees | Name of family, address, phone number, etc. | 97 |
Local Employees (Domestic & Overseas Group Companies) | Name, email address, HQ system account information. | 881 |
Ex-employees | Name, taxpayer ID numbers, and human resources information for ex-employees of overseas group companies previously affiliated with the company. | 66 |
Business Partners | ||
Contact Information | Name, email address, telephone number, company name, company address of representatives or contacts of business partners. | 1,922 |
ID Card Information | Name and ID card information. | 2 |
Interviewees | Name, email address, phone number, address, and biographical information of individuals who interviewed for employment. | 9 |
Customers | ||
Customer Details | Delivery address, name, telephone number, date of purchase, product name, etc., for products requiring delivery and installation in Japan. | 91 |
Additional information confirmed to have been leaked includes data related to invoices, contracts, and sales involving some business partners.
Additionally, meeting materials and internal review documents were also part of the leaked data. Furthermore, data related to internal systems was compromised. It is important to note that no insider-related information was leaked.
Casio’s Response and Preventive Measures
Casio has taken several steps to address the breach and prevent similar incidents in the future:
Casio submitted a detailed report on the data breach to Japan’s Personal Information Protection Commission on December 3, 2024, and also notified relevant overseas data protection authorities in compliance with legal requirements.
Following advice from law enforcement, cybersecurity experts, and legal counsel, the company refused to comply with the ransom demands of the attackers.
To bolster its defenses, Casio is collaborating with external cybersecurity specialists to strengthen its IT security systems across the entire group, including overseas offices, by reviewing global security practices and reinforcing internal rules.
Additionally, the company is enhancing its internal training programs to raise employee awareness about cyber threats, particularly phishing attacks.
Casio announced that most suspended services have now resumed after ensuring system safety. Customers and partners affected by the data leak are being contacted individually, and Casio has pledged to work proactively to safeguard their privacy.
The company revealed that some employees have received spam emails potentially linked to the data breach.
However, no secondary damage has been reported for customers or business partners so far.
Casio urged stakeholders to avoid sharing leaked information online to prevent further harm and assured legal action against malicious activities such as slander or dissemination of fake information.
In a statement, Casio apologized for the incident, expressing regret for the inconvenience caused to stakeholders.
The company pledged to implement stricter security measures and conduct ongoing improvements to ensure it delivers reliable products and services while fostering trust with employees, partners, and customers alike.
ANY.RUN Threat Intelligence Lookup - Extract Millions of IOC's for Interactive Malware Analysis: Try for Free