HQ/EMEAFind out how we can help your business
Fujitsu confirmed that information owned by some of its staff and customers’ businesses was stolen during the March data breach incident. According to this well-known Japanese IT company, the attackers who operated the cyberattack did not use ransomware; instead, they utilised a sophisticated technique to bypass security solutions while exfiltrating the information.
Moreover, earlier this year, the company’s initial investigation identified some of its systems infected with malware. The malware infection has raised concerns about the possibility of sensitive client information being hacked.
However, the company assured everyone that they had isolated the compromised devices and had immediately launched an investigation after identifying the attack.
About 49 systems were compromised in the Fujitsu breach.
Fujitsu claims that the cybersecurity incident resulted in data theft after the malware spread from one point of breach to 49 systems. The company then explained that after the attackers deployed the malware to one of their computers, it gradually spread to other machines.
In addition, the announcement revealed that the malware used by the attackers in the data breach incident is not ransomware. However, the malicious payload used advanced tactics to disguise itself, allowing it to hide from detection features.
Fujitsu’s investigation team classified the attack as highly advanced, meaning the threat actors behind the campaign used sophisticated tactics. The affected company claims that the 49 affected systems were isolated immediately following the detection of the attack and that the virus was limited to the Japan-based network environment.
Still, the firm revealed that the malware’s activity resulted in commands to copy data being performed in their systems. They believe that the actors have successfully exfiltrated the exposed data.
Furthermore, the files that may have been duplicated contained some people’s personal information as well as client business information.
Fujitsu insisted that its team has yet to receive reports of data misuse due to the stolen data. The company has established security monitoring rules for all business devices within its organisation and updated the malware detection technology to prevent similar incidents that could result in future attacks.
