The Japanese tech company Casio has revealed that ransomware in October stole the personal information of about 8,500 people.
A ransomware attack happened on October 5 at Casio. Hackers got to private data and made many of the company’s systems useless. A post on the dark web that Parhlo World saw said that the Underground ransomware group claimed the attack and said it had taken more than 200 gigabytes of data from Casio’s computers.
In a post on Tuesday, Casio revealed that the hacking group—which security experts have linked to RomCom (or Storm-0978), a cybercriminal group with ties to Russia—accessed the personal information of about 8,500 people during the October cyberattack.
In the update, Casio said, “Once the investigation is over as much as it can be, we would like to report that some of its internal documents have been leaked. These documents contain personal information.”
The company said that the breach affected the data of about 6,500 workers and included names, employee numbers, and email addresses. The dates of birth, genders, ID card information, family information, and taxpayer ID numbers of some workers were also stolen.
The hackers also got into the personal information of 91 users and more than 1,900 business partners of Casio. They saw their names, email addresses, phone numbers, and ID card information.
The company that makes Casio said that the breach did not reveal any credit card information because it did not affect the system that handles customer personal information.
They said in Tuesday’s update that the hackers got in by using phishing because “some deficiencies in the company’s measures against phishing emails.” Also, the business confirmed that it did not talk to the hackers who did the attack. It said, “We have not responded to any unreasonable demands from the ransomware group that carried out the unauthorized access.”
Also Read: Hackers With Ties to Russia Used Firefox and Windows Bugs in a “widespread” Campaign of Attacks
Casio said that “with the exception of some individual services,” all of the services that were down because of the ransomware attack are now back online. It’s not clear which services are still not working. The company didn’t answer Parhlo World questions right away.
What do you say about this story? Visit Parhlo World For more.
