KDDI confirmed that a June 17 breach impacted more than 12 million people after attackers exploited a zero-day vulnerability in software used for the email infrastructure of five ISPs, including STNet, JCOM, Chubu Telecommunications, NIFTY, and BIGLOBE. The company said it removed the attackers, is enforcing password resets, and is working with the ISPs to patch the flaw and improve secure communications. #KDDI #STNet #JCOM #ChubuTelecommunications #NIFTY #BIGLOBE
Keypoints
- KDDI confirmed a data breach affecting 12.2 million people.
- Attackers exploited a zero-day vulnerability in email infrastructure software.
- The breach involved systems used by five ISPs, not KDDIβs own mobile or fixed-line email services.
- Email addresses of 12.2 million users and passwords of 7.6 million users were compromised.
- KDDI is forcing password resets and working to patch the vulnerability.
Read More: https://www.securityweek.com/12-million-impacted-by-data-breach-at-japanese-telco-kddi/