Ethical Hacking News
Nidec Corporation has confirmed that its systems were breached by hackers earlier this year, resulting in the theft of sensitive data. The Japanese tech giant had previously acknowledged a ransomware attack but refused to name the perpetrators. However, according to Nidec's latest statement, the attackers were from the 8BASE ransomware gang. The breach highlights the importance of robust security measures and regular training for employees.
Nidec Corporation confirmed that its systems were breached by hackers in June 2024, resulting in the theft of sensitive data. The attackers were from the 8BASE ransomware gang and accessed confidential information including internal documents and personal data. 50,694 files were stolen, including sensitive business documents, contracts, and personal data. The attackers initially demanded ransom but leaked the stolen data on the dark web after their demands were not met. Nidec has taken steps to remediate the breach and implemented additional security measures. The incident highlights the importance of robust security measures and regular training for employees.
In a shocking revelation, Nidec Corporation has confirmed that its systems were breached by hackers earlier this year, resulting in the theft of sensitive data. The Japanese tech giant, which operates globally with 120,000 employees and generates over $11 billion annually, had previously acknowledged a ransomware attack but refused to name the perpetrators. However, according to Nidec's latest statement, the attackers were from the 8BASE ransomware gang.
The breach occurred in June 2024, when hackers gained access to Nidec's systems through a valid VPN account credential of an employee. The attackers then accessed a server containing confidential information, including internal documents, letters from business partners, and labor safety and health policies. A total of 50,694 files were stolen, including sensitive business documents, contracts, and personal data.
In a surprising twist, the attackers initially demanded ransom from Nidec but decided to leak the stolen data on the dark web after their demands were not met. The leaked data includes confidential information about green procurement, as well as internal documents and letters from business partners.
Nidec has taken steps to remediate the breach, including closing the entry point used by the hackers and implementing additional security measures. The company has also begun training its employees on how to minimize such risks in the future.
The investigation into the breach revealed that the hackers had obtained valid VPN account credentials of a Nidec employee and accessed a server containing confidential information. The attackers then stole 50,694 files, including sensitive business documents, contracts, and personal data.
Nidec has acknowledged that the threat actors' claims about the stolen data are true, but has not provided any further clarification about their involvement in the attack. The company has stated that it does not believe that any of the leaked data could be used to cause direct financial damage to it or its contractors.
The breach highlights the importance of robust security measures and regular training for employees. It also underscores the risks associated with using third-party vendors and outsourcing sensitive information. As Nidec's incident demonstrates, even a well-established company like Nidec can fall victim to a sophisticated ransomware attack if proper precautions are not taken.
In addition to Nidec's breach, there is another notable case involving the 8BASE ransomware gang, which claimed responsibility for an attack on Casio in August 2024. The attackers also published data allegedly stolen from Casio, highlighting the growing threat of ransomware attacks and their potential consequences.
Furthermore, the incident raises questions about the adequacy of cybersecurity measures in place at Nidec. While the company has taken steps to remediate the breach, its response to the attack has been somewhat delayed. This delay may have allowed the attackers to leak sensitive information on the dark web, potentially causing further damage to Nidec's reputation.
Overall, Nidec's data breach serves as a stark reminder of the importance of robust cybersecurity measures and regular training for employees. As companies continue to rely increasingly on digital technologies, they must prioritize security to protect against sophisticated threats like ransomware attacks.
Related Information:
https://www.bleepingcomputer.com/news/security/tech-giant-nidec-confirms-data-breach-following-ransomware-attack/
https://cybernews.com/security/8base-new-ransomware-group-explained/
https://krebsonsecurity.com/2023/09/whos-behind-the-8base-ransomware-website/
Published: Fri Oct 18 11:46:38 2024 by llama3.2 3B Q4_K_M
