Japanese electronics producer Casio says that the October 2024 ransomware incident uncovered the non-public information of roughly 8,500 folks.
The affected people are primarily Casio staff and enterprise companions, however there was a small set of buyer private info within the uncovered information.
Underground ransomware assault
The cyberattack occurred on October 5, when ransomware actors using phishing techniques compromised the corporate’s community and brought about an IT methods outage.
On October 10, the assault was claimed by the Underground ransomware gang, which threatened to reveal confidential paperwork, monetary recordsdata, venture info, and worker information except a ransom was paid.
Quickly after, Casio confirmed that Underground had stolen the non-public information of staff, companions, and prospects. Nevertheless, the corporate didn’t present the variety of affected folks.
With the investigation now accomplished, Casio is able to give the complete particulars of the info breach scope.
The most recent announcement from the corporate lists the next uncovered information:
- Workers (6,456 people): Identify, worker quantity, e mail deal with, affiliation, gender, date of beginning, household particulars, deal with, cellphone quantity, taxpayer ID numbers, and HQ system account info.
- Enterprise companions (1,931 people): Identify, e mail deal with, cellphone quantity, firm identify, firm deal with, and ID card info for some.
- Prospects (91 people): Supply deal with, identify, cellphone quantity, date of buy, and product identify for gadgets requiring supply and set up.
- Different leaked information: Inside paperwork, together with invoices, contracts, and assembly supplies.
As impacted people are recognized, they’ll obtain personalised notices in regards to the incident from Casio.
Though some staff acquired unsolicited emails believed to be linked to the ransomware incident and delicate information publicity, the corporate says there was no secondary harm to them, their companions, or prospects as of but.
Casio specified that no buyer information or bank card info had been uncovered to Underground ransomware, as their databases holding buyer info weren’t impacted by this incident.
The Japanese agency additionally made it clear that they didn’t negotiate with the cybercriminals.
“Following session with regulation enforcement companies, outdoors counsel and safety specialists, Casio has not responded to any unreasonable calls for from the ransomware group that carried out the unauthorized entry,” explains Casio.
As for the impacted providers, Casio says that the majority of them have returned to regular operational standing, although some providers haven’t been recovered but.
In the meantime, though Casio’s CASIO ID and ClassPad.web platforms are flagged as not impacted by the ransomware assault, these providers additionally suffered a separate breach in October 2024.