Data breach at Kawasaki could affect employees and business customers

Security teams at Kawasaki Heavy Industries, a Japanese multinational focused on manufacturing for multiple industries, announced that their information systems were compromised during a security incident that could lead to exposure of employee and customer data.

In its statement the company highlights some details about the incident: “As a result of an exhaustive investigation, we have determined that some of the information in several overseas offices could have been leaked to external platforms.” Although Kawasaki argues that no evidence has been found to claim that a data breach has occurred, the incident is being monitored to prevent further damage.

The company’s IT area detected unauthorized access to a server in Japan from an office in Thailand on June 11, so all communications in Kawasaki were interrupted: “In the end we detected other unauthorized access to servers from locations abroad; in response we have improved access monitoring operations, as well as strengthening restrictions to prevent and detect unauthorized activity.”

The company is still afraid that the information will be compromised because of the confidential nature of these records, not to mention that there is no trace of the threat actors: “This unauthorized access was carried out using sophisticated tools that left no trace.” Kawasaki has already contacted external cybersecurity consultants to prevent scenarios like this from repeating the future.

This is not the only incident that has occurred to a Japanese company in recent times. A few weeks ago Mitsubishi Electric and Kobe Steel executives recognized the detection of cyberattacks that resulted in the breach of thousands of records, although more related information is unknown.

The cyberattack on Kawasaki is still being investigated, so more details could be revealed shortly.

Originally published at https://www.securitynewspaper.com on December 29, 2020.

Knowledge belongs to the world