Mitsubishi breached by suspected Chinese hackers

The electronics giant is one of Japan’s key defence and infrastructure contractors

Japanese electronics and manufacturing titan Mitsubishi announced it has detected evidence of a cyber attack in which attackers allegedly stole around 200MB of internal business documents from a number of PCs and servers.

The attack took place more than six months ago on 28 June last year, according to a short statement posted to the company’s website, and involved the theft of personal information and confidential corporate data.

Advertisement - Article continues below

Concerns have been raised as to the consequences of the attack, due to Mitsubishi’s close ties to the Japanese government. The company holds a number of key contracts within Japan’s national infrastructure and defence sectors, but Mitsubishi has denied that any sensitive information relating to these areas was leaked.

According to Japan’s Nikkei newspaper, sources involved in the investigation into the breach suggest that ‘Tick’ - a hacking group with suspected links to China that has attacked a series of Japanese defence, satellite and aerospace companies - may be behind the attack. 

Related Resource

How targeted simulations differ from penetration tests and vulnerability scanning

Stay one step ahead of cyber attackers

Download now

The attack on Mitsubishi’s network has been traced back to a single compromised account belonging to an employee of one of the company’s China-based affiliates, according to Japan’s Asahi Shimbun newspaper, which was then used to infiltrate the internal networks and compromise machines belonging to a number of middle managers throughout various divisions.

Advertisement
Advertisement - Article continues below

Along with the data stolen as part of the initial breach, the attack could be used to launch supply-chain attacks against Mitsubishi’s corporate customers and partners; a tactic that has become increasingly popular in recent years.

Mitsubishi has apologised for the inconvenience caused to anyone affected by the incident.

Featured Resources

The case for a marketing content hub

Transform your digital marketing to deliver customer expectations

Download now

Fast, flexible and compliant e-signatures for global businesses

Be at the forefront of digital transformation with electronic signatures

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

IT faces new security challenges in the wake of COVID-19

Beat the crisis by learning how to secure your network

Download now
Advertisement

Recommended

Visit/security/phishing/355936/inky-announces-20m-series-b-funding-round
phishing

INKY announces $20M Series B funding round

4 Jun 2020
Visit/security/ransomware/355909/microsoft-issues-warning-about-new-ponyfinal-ransomware-attacks
ransomware

Microsoft issues warning about new PonyFinal ransomware attacks

3 Jun 2020
Visit/security/data-breaches/355908/amtrak-guest-reward-suffers-a-data-breach
data breaches

Amtrak Guest Reward suffers a data breach

3 Jun 2020
Visit/security/cyber-security/355903/brand-impersonation-and-form-based-attacks-are-rising
cyber security

Brand-impersonation and form-based attacks are rising

3 Jun 2020

Most Popular

Visit/operating-systems/ios/355935/apple-confirms-serious-bugs-in-ios-135
iOS

Apple confirms serious bugs in iOS 13.5

4 Jun 2020
Visit/mobile/5g/355911/the-uk-pivots-to-japan-for-5g-equipment
5G

The UK looks to Japan and South Korea for 5G equipment

4 Jun 2020
Visit/hardware/355904/picking-the-perfect-multifunction-printer
Hardware

Picking the perfect multifunction printer

4 Jun 2020