By Ashwani Mishra, Editor-Technology, 63SATS
Japan is facing an unprecedented surge in cyberattacks, with critical industries and major corporations falling victim to sophisticated hacking campaigns.
From aerospace to finance, and even cultural icons like anime and gaming companies, cybercriminals are relentlessly targeting Japan’s digital infrastructure.
NTT Communications Breach
One of the most concerning cyber incidents in recent months was the breach at NTT Communications Corporation (NTT Com).
On February 5, 2024, NTT Com detected unauthorized access to its internal Order Information Distribution System, which manages corporate customer service orders. A deeper investigation revealed that sensitive customer data—including names, contract numbers, phone numbers, email addresses, and service usage details—may have been leaked.
In response, NTT Com implemented immediate containment measures and began notifying the 17,891 affected customers. The breach raises serious concerns about the security of critical telecommunications infrastructure, which serves as the backbone of Japan’s digital economy.
A String of High-Profile Attacks
The cyber onslaught against Japan has intensified over the past year, impacting key sectors and raising concerns about national security, economic stability, and data privacy. Some of the most alarming incidents include:
Japan Aerospace Exploration Agency (JAXA): In June 2024, Japan’s Chief Cabinet Secretary revealed that JAXA has been under continuous cyberattacks since 2023. While details remain undisclosed, the persistence of these attacks suggests a highly coordinated effort to breach national security and access sensitive aerospace data.
Japan Airlines (JAL): In December, JAL reported a cyber incident that led to delays in both domestic and international flights. The company attributed the disruption to a surge in traffic, indicative of a Distributed Denial-of-Service (DDoS) attack. Such attacks highlight the risks airlines face as they rely heavily on digital infrastructure for operations.
Mitsui Sumitomo Insurance: One of Japan’s leading non-life insurance companies disclosed a breach in its third-party vendor’s system, allegedly carried out by a ransomware group. Reports suggest that personal data of thousands of policyholders might have been exposed, putting their sensitive financial and personal information at risk.
Kadokawa Cyber Extortion: In a major blow to Japan’s entertainment industry, Kadokawa—a powerhouse in manga, anime, and video games—reportedly paid nearly $3 million to the Russian-linked hacking group BlackSuit after a data breach. This incident highlights how ransomware attacks are not just targeting financial institutions but also cultural and media enterprises.
Casio Ransomware Attack: In October 2023, Japanese watchmaker Casio suffered a ransomware attack that disrupted operations and delayed product deliveries. The attack was claimed by the ransomware group known as Underground, once again emphasizing the vulnerability of even traditional manufacturing companies to cyber threats.
Other Affected Companies: Electric motor manufacturer Nidec, automotive parts supplier Yorozu, and research organization Monohakobi have all reported recent cyber intrusions, showing that no sector is immune from these escalating threats.
The surge in cyberattacks targeting Japan signals a critical moment for the nation’s cybersecurity landscape. Whether it is government agencies, airlines, financial institutions, or cultural enterprises, no sector is safe from the increasing sophistication of cybercriminals.
