HQ/EMEAFind out how we can help your business
Japanese multinational electronics manufacturing corporation Casio confirmed it suffered a security breach attack that could impact customers in about 149 countries.
Based on reports, the threat actors acquired unauthorised server access after it compromised the company’s ClassPad education platform. Moreover, Casio identified the incident this month after a ClassPad database in their development environment failed. It appeared that the attackers accessed customer data on October 12, a day after the company spotted the failed database.
The confirmed information compromised by the attackers includes customer names, email addresses, countries of residence, service usage details, and purchase information. In addition, further assessment also noticed that the actors acquired payment methods, license codes, and order specifics. Fortunately, the compromised database does not store credit card information.
As of October 18, the attackers reached 91,921 records of Japanese customers, including individuals and 1,108 educational institution customers. They also accessed 35,049 records of customers from 148 countries and regions outside Japan.
Casio blamed the security breach on system error and poor operational management.
Casio explained that the data breach incident was likely a result of a disabled specific network security settings in the development environment due to a system error and insufficient operational management.
However, the ClassPad[.]net application continues to be operational despite the compromised database is currently inaccessible to external entities. On the other hand, Cassio also emphasised that the threat actors have not reached further system information besides the compromised database within the development environment.
The company reported the incident to Japan’s Personal Information Protection Commission and cooperated with relevant law enforcement in their breach investigation. They are also working with third-party security researchers and forensics to investigate the cause of the incident and establish measures to prevent future breaches.
This incident is not the first time Casio has suffered a cyberattack this year. In early August, a threat actor named thrax claimed to have leaked over 1.2 million user records on the BreachForums cybercrime forum. These hackers allegedly stole the records from an older casio[.]com database. The information included entries dating to July 2011, AWS keys, and database credentials.
As of now, Casio has yet to provide additional details about the October data breach attack and has yet to confirm the claims made by thrax.
