Mitsubishi Electric, one of the world’s leading companies disclosed a major data breach.
Mitsubishi Electric is a Japanese multinational electronics and electrical equipment manufacturing firm headquartered in Tokyo, Japan.
A suspicious file on one of the company’s servers was detected on June 28, 2019, by Mitsubishi Electric staff which was later tracked to one of the employee’s computers, which suggests it could have been a targeted phishing email.
Even though the official investigation began in September, the Tokyo-based corporation disclosed the security incident today, only after two newspapers Asahi Shimbun and Nikkei, reported the relevant information of the breach on January 20, 2020.
The newspapers blamed that the attack was initiated by a cyber-espionage group named Tick (or Bronze Butler) with links to the People’s Republic of China known to the cyber-security industry for targeting Japan over the past few years.
The attack spread to 14 other headquarters across the company (both in-house and internationally), compromising sales and the head office departments. Nikkei reported that 200MB of information from Mitsubishi mostly business documents were stolen.
Mitsubishi said: “We have confirmed that our network may have been subject to unauthorised access by third parties and that personal information and corporate confidential information may have been leaked to the outside.”
It is being said that the cyber attack had targeted information related to job applicants and employees of the month.
Mitsubishi’s corporate parents, the company wrote: “As a result of an internal investigation, it has been confirmed that sensitive information on social infrastructures such as defense, electric power, and railways highly confidential technical information, and important information concerning business partners has not been leaked.”
Mainichi a local newspaper reported that the Mitsubishi Electric had also notified members of the Japanese government and Ministry of Defense before going public.
Mitsubishi apologised to everybody whose information has been compromised and also added that it would strictly monitor it’s systems and improve security measures across the company.
You may be interested in reading: ASP.NET Hit by Ransomware