Mitsubishi breached by suspected Chinese hackers
The electronics giant is one of Japan’s key defence and infrastructure contractors
Japanese electronics and manufacturing titan Mitsubishi announced it has detected evidence of a cyber attack in which attackers allegedly stole around 200MB of internal business documents from a number of PCs and servers.
The attack took place more than six months ago on 28 June last year, according to a short statement posted to the company’s website, and involved the theft of personal information and confidential corporate data.
Concerns have been raised as to the consequences of the attack, due to Mitsubishi’s close ties to the Japanese government. The company holds a number of key contracts within Japan’s national infrastructure and defence sectors, but Mitsubishi has denied that any sensitive information relating to these areas was leaked.
According to Japan’s Nikkei newspaper, sources involved in the investigation into the breach suggest that ‘Tick’ - a hacking group with suspected links to China that has attacked a series of Japanese defence, satellite and aerospace companies - may be behind the attack.
How targeted simulations differ from penetration tests and vulnerability scanning
Stay one step ahead of cyber attackers
The attack on Mitsubishi’s network has been traced back to a single compromised account belonging to an employee of one of the company’s China-based affiliates, according to Japan’s Asahi Shimbun newspaper, which was then used to infiltrate the internal networks and compromise machines belonging to a number of middle managers throughout various divisions.
Along with the data stolen as part of the initial breach, the attack could be used to launch supply-chain attacks against Mitsubishi’s corporate customers and partners; a tactic that has become increasingly popular in recent years.
Mitsubishi has apologised for the inconvenience caused to anyone affected by the incident.
Get the ITPro. daily newsletter
Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.
Adam Shepherd has been a technology journalist since 2015, covering everything from cloud storage and security, to smartphones and servers. Over the course of his career, he’s seen the spread of 5G, the growing ubiquity of wireless devices, and the start of the connected revolution. He’s also been to more trade shows and technology conferences than he cares to count.
Adam is an avid follower of the latest hardware innovations, and he is never happier than when tinkering with complex network configurations, or exploring a new Linux distro. He was also previously a co-host on the ITPro Podcast, where he was often found ranting about his love of strange gadgets, his disdain for Windows Mobile, and everything in between.
You can find Adam tweeting about enterprise technology (or more often bad jokes) @AdamShepherUK.