Wave of Cyberattacks Hits Major Japanese Firms, Exposing Millions of Records
Several prominent Japanese companies, including an insurer, a telecom provider, and a beverage giant, have recently disclosed significant cyber incidents. These attacks have led to extensive customer data exposure, internal system disruptions, and ongoing investigations, underscoring a heightened threat landscape for Japanese enterprises.
Over the past two weeks, a series of cyber incidents has impacted major Japanese corporations, revealing vulnerabilities that led to customer data compromise and operational interruptions. While there's no immediate evidence linking these attacks, they collectively highlight a concerning trend for the region's digital security.
## Aflac Japan Suffers Massive Data Breach
The most significant disclosure comes from **Aflac Life Insurance Japan**, a subsidiary of the U.S.-based insurer. The company reported that hackers breached its customer portal and other systems, potentially exposing the personal information of approximately 4.38 million policyholders.
Compromised data includes names, addresses, and phone numbers, with an additional 230,000 customers having their premium payment account information accessed. **Aflac** promptly suspended parts of its systems and has notified Japanese police and cybersecurity authorities. The incident was localized to its Japanese operations, with no impact on its U.S. business.
## Sapporo Subsidiaries Targeted
Beverage giant **Sapporo Holdings** also disclosed suspected unauthorized access affecting two of its overseas subsidiaries: Singapore-based food and beverage company **Pokka** and Canadian brewer **Sleeman Breweries**. Following the detection of suspicious network activity, **Sapporo** shut down affected systems to investigate potential data theft. The company has not reported any impact on its domestic operations.
This incident echoes a previous attack on rival **Asahi** last year, where a ransomware incident exposed data from 1.5 million customers and disrupted production and logistics across Japan.
## Nidec and KDDI Face Separate Intrusions
Industrial manufacturer **Nidec** revealed a ransomware attack on its Taiwanese subsidiary, **Nidec Chaun Choung Technology**. While a possible information leak was acknowledged, the company has not confirmed if any personal or confidential data has been published online. The attacking group claimed responsibility, demanding a $2 million ransom and asserting the theft of over two terabytes of corporate data, including employee, financial, and IT records. **Nidec** stated that the subsidiary's independent network limited the broader corporation's impact. This marks the second ransomware incident for **Nidec** in recent years, following a 2024 attack on its Vietnam-based precision manufacturing division.
In a separate event, telecommunications giant **KDDI Corporation** reported unauthorized access to an email system it manages for five Japanese internet service providers. The breach exploited a vulnerability in third-party software, potentially exposing customers' email addresses and passwords. **KDDI** acted swiftly to block the intrusion, identify the entry point, and implement additional security measures.
