Data Breach at Ofuji Fishing: 200,000 Customers’ Information Compromised
Ofuji Fishing Tackles, a renowned fishing tackle wholesaler and manufacturer in Japan has recently faced a severe cyber threat. The company disclosed a potential data breach involving personal customer information, a consequence of a ransomware attack targeting their systems. This incident, confirmed on December 13, 2023, has raised concerns about the leakage of customer data, including membership numbers, names, addresses, dates of birth, and phone numbers, affecting approximately 200,000 individuals.
“On December 13, 2023, we confirmed unauthorized activities on our computer system. Attackers encrypted data within our servers using ransomware, which included customer personal information. External investigations have not found explicit evidence of data extraction, but we cannot rule out the possibility,” the company stated [Translated].
The breach was traced back to the exploitation of VPN equipment used for internal internet access, leading to the encryption of sensitive data by attackers. While there is no concrete evidence of data misuse, Ofuji Fishing Tackles urges customers to remain vigilant against suspicious inquiries. The company has taken immediate steps to address the breach, including contacting affected customers directly and bolstering their information management systems to prevent future incidents. They have also reported the incident to appropriate authorities and are committed to full cooperation in ongoing investigations.
“To date, no misuse of data has been confirmed. We urge affected customers to be vigilant against suspicious inquiries. In the event of third-party data misuse, please contact the support line provided at the end of this notice,” the company added [Translated].
This incident highlights the growing cybersecurity challenges facing businesses globally and underscores the importance of robust digital protection measures, especially for companies holding sensitive customer data.