Casio Computer Co., Ltd. has disclosed the results of its investigation into a ransomware attack that compromised its servers on October 5, 2024. In a statement, the company expressed deep regret for the inconvenience and concern caused to its customers, employees, and business partners. The attack, originating from overseas, rendered several systems unusable and led to the leakage of internal documents containing personal and business data.
With the support of external security specialists, Casio identified significant deficiencies in its defenses against phishing and global network security. According to the company, “despite Casio’s efforts to strengthen system security in response to the recent increase in cyberattacks, there were some deficiencies in the company’s measures against phishing emails and its global network security system.”
The leaked information primarily included personal data of employees, business partners, and a small group of customers. However, no evidence of data theft was found in Casio’s customer database or systems handling customer personal information.
Casio confirmed that the leaked data spans various categories:
- Employee Information:
- Data of 6,456 employees, including human resources details, email addresses, and ID card information for some.
- Data of 66 ex-employees, including taxpayer IDs and HR details.
- Business Partner Information:
- Details of 1,931 business partners, including names, email addresses, and company information.
- Customer Information:
- Delivery addresses, names, and purchase details of 91 customers in Japan.
- Other Documents:
- Meeting materials, internal review documents, invoices, and contracts.
Casio assured stakeholders that no credit card or insider-related information was affected. Furthermore, services like CASIO ID and ClassPad.net remain secure as they run on separate systems.
Casio reported that some employees have received spam emails potentially linked to the attack but stated, “there have been no reports of such secondary damage to business partners or customers.”
Related Posts:
- Casio Confirms Network Breach, Investigates Potential Data Compromise
- Casio Hit by Ransomware Attack, Customer and Employee Data Compromised
- AMD push security update to patch 13 security vulnerabilities
