Casio Hacked

Global electronics manufacturer Casio Computers servers had been compromised in a ransomware attack, resulting in a significant data breach.

The cyberattack, which occurred on October 5, 2024, led to the unauthorized access of sensitive internal documents, including personal information related to employees, business partners, and a small number of customers.

The company publicly apologized for the incident and outlined measures being taken to address the breach and prevent future occurrences.

Following the breach, Casio launched a forensic investigation in collaboration with an external cybersecurity firm.

The investigation confirmed that hackers gained unauthorized access to Casio’s servers from overseas, exploiting vulnerabilities associated with phishing emails and gaps in the company’s global network security, including at overseas offices.

The ransomware attack rendered several systems temporarily unusable and caused a leak of internal documents containing personal information.

Notably, Casio emphasized that no customer database or credit card information was compromised.

However, sensitive data regarding employees, business partners, and customers was confirmed to have been leaked.

Details of the Leaked Information

According to the Casio Statement, the leaked data includes the following:

Here is the information summarized in a table format:

CategoryDetailsNumber of People
Employees
Total Employees (including temp)Total number of employees (includes temporary/contract employees).6,456
Domestic EmployeesName, employee number, email address, affiliation.5,509
Additional Data for 10 EmployeesGender, date of birth, and ID card information.10
Additional Data for 97 EmployeesName of family, address, phone number, etc.97
Local Employees (Domestic & Overseas Group Companies)Name, email address, HQ system account information.881
Ex-employeesName, taxpayer ID numbers, and human resources information for ex-employees of overseas group companies previously affiliated with the company.66
Business Partners
Contact InformationName, email address, telephone number, company name, company address of representatives or contacts of business partners.1,922
ID Card InformationName and ID card information.2
IntervieweesName, email address, phone number, address, and biographical information of individuals who interviewed for employment.9
Customers
Customer DetailsDelivery address, name, telephone number, date of purchase, product name, etc., for products requiring delivery and installation in Japan.91

Additional information confirmed to have been leaked includes data related to invoices, contracts, and sales involving some business partners.

Additionally, meeting materials and internal review documents were also part of the leaked data. Furthermore, data related to internal systems was compromised. It is important to note that no insider-related information was leaked.

Casio’s Response and Preventive Measures

Casio has taken several steps to address the breach and prevent similar incidents in the future:

Casio submitted a detailed report on the data breach to Japan’s Personal Information Protection Commission on December 3, 2024, and also notified relevant overseas data protection authorities in compliance with legal requirements.

Following advice from law enforcement, cybersecurity experts, and legal counsel, the company refused to comply with the ransom demands of the attackers.

To bolster its defenses, Casio is collaborating with external cybersecurity specialists to strengthen its IT security systems across the entire group, including overseas offices, by reviewing global security practices and reinforcing internal rules.

Additionally, the company is enhancing its internal training programs to raise employee awareness about cyber threats, particularly phishing attacks.

Casio announced that most suspended services have now resumed after ensuring system safety. Customers and partners affected by the data leak are being contacted individually, and Casio has pledged to work proactively to safeguard their privacy.

The company revealed that some employees have received spam emails potentially linked to the data breach.

However, no secondary damage has been reported for customers or business partners so far.

Casio urged stakeholders to avoid sharing leaked information online to prevent further harm and assured legal action against malicious activities such as slander or dissemination of fake information.

In a statement, Casio apologized for the incident, expressing regret for the inconvenience caused to stakeholders.

The company pledged to implement stricter security measures and conduct ongoing improvements to ensure it delivers reliable products and services while fostering trust with employees, partners, and customers alike.

ANY.RUN Threat Intelligence Lookup - Extract Millions of IOC's for Interactive Malware Analysis: Try for Free

Balaji N
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.