Seiko Attacked By BlackCat

Uploaded on 2023-09-01 in FREE TO VIEW, NEWS-Cybersecurity News

The ransomware gang BlackCat has  claimed responsibility for a ransomware attack on Japanese  Seiko Group Corp on August 10th and has now published samples of stolen data files as proof of its attack. 

Seiko is a diverse electronics business, best known as one of the world's largest and most watchmakers. Seiko has 12,000 employees and an annual revenue of $1.6 billion.

The cyber criminals claim to have stolen 2 Tb worth of files, including employee information, production technology details, video and audio recordings of management meetings, emails, and copies of passports belonging to employees and foreign visitors.  

Now, the ransomware group has published screenshots to demonstrate that they have obtained contracts and other corporate documents, confidential technical documents, passport copies, and emails.

Seiko  has confirmed that on July 28th of this year, the Company suffered a possible data breach. It appears that some as-yet-unidentified party or parties gained unauthorised access to at least one of our servers. “Subsequently, on August 2nd, we commissioned a team of external cybersecurity experts to investigate and assess the situation... As a result, we are now reasonably certain that there was a breach and that some information stored by our Company and/or our Group companies may have been compromised." says Seiko.

Seiko and their working to verify the exact nature of the information that was stored on the impacted servers “Working closely with cyber security experts, we are now making every effort to prevent further damage and to ensure that our systems are secure against any similar recurrence." Seiko's customers and business partners are invited to make immediate contact if they receive any suspicious or unusual emails or notifications.

BlackCat has since claimed to be behind the attack on Seiko, posting samples of data that they claim to have stolen during the attack. BlackCat  criticised  Seiko's IT security and leaked what appear to be production plans, employee passport scans, new model release plans, and specialised lab test results. The hackers also leaked samples of what they claim are confidential technical schematics and Seiko watch designs as part of their extortion attempt.

Seiko is the latest victim of a sequence of large scale, damaging attacks on Japanese business and infrastructure this year, including a potential supply chain attack on customers of Fujitsu and the Port of Nagoya.  

SII:    Bleeping Computer:     Security Week:   Bank Info Security:  TEISS:   Silicon Angle:   

Image: Sergey Samin

You Might Also Read: 

ABB Struck By Black Basta Ransomware:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Hospital IoT & IoMT Cyber Security Risk
Empower Your DaaS Programs »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Conscio Technologies

Conscio Technologies

Conscio Technologies is a specialist in IT security awareness. Our solutions allow you to easily manage innovative online IT awareness campaigns.

Arxan Technologies

Arxan Technologies

Arxan is a leader of application attack-prevention and self-protection products for Internet of Things (IoT), Mobile, Desktop, and other applications.

Engage Black

Engage Black

Engage Black provides solutions for securing and protecting cryptographic keys, data at rest, and data in motion.

Menlo Security

Menlo Security

Menlo Security protects organizations from cyberattacks by eliminating the threat of malware from the web, documents, and email.

ABL Cyber Academy

ABL Cyber Academy

ABL provide certified training courses in the field of cyber security and IT project management.

European Business Reliance Centre (EBRC)

European Business Reliance Centre (EBRC)

EBRC is a leader in integrated Data Center, Cloud and Managed Services and a Centre of Excellence in Europe in the Management of Sensitive Information.

Georgia Cyber Center

Georgia Cyber Center

Georgia Cyber Center is dedicated to training the next generation of professionals through education and real-world practice while also supporting innovation in new technologies for online defenses.

ZenMate

ZenMate

ZenMate is a Virtual Private Network services provider offering secure encrypted access to the internet.

Armorblox

Armorblox

Armorblox stops targeted email attacks such as 0-day credential phishing, payroll fraud, vendor fraud, and other threats that get past legacy security controls.

Randori

Randori

Randori is an attack platform that provides "red-teaming" as a service - basically, staging simulated hack attacks to test for vulnerabilities and gaps in the security response.

QuickLaunch

QuickLaunch

QuickLaunch transforms how cloud-savvy institutions and companies manage human and device authentication, authorization, access control and integration.

Arc4dia Labs

Arc4dia Labs

Arc4dia have developed SNOW, a cyber security solution to combat the world’s most sophisticated cyber threats.

Global Cyber Risk (GCR)

Global Cyber Risk (GCR)

Global Cyber Risk is a technology and advisory services firm that provides first tier cybersecurity services to both large corporations and small and mid-sized businesses.

Boxphish

Boxphish

Boxphish provides a proven solution to reduce Human Error and Cyber Human Risk via automated learning journeys and intelligent phishing simulations.

Laminar

Laminar

Laminar provides the only Public Cloud Data Protection solution that provides full visibility and enforcement capabilities across your entire public cloud infrastructure.

Ibento Global

Ibento Global

Ibento organises the CyberX series of cybersecurity conferences.