KDDI disclosed that attackers exploited a zero-day vulnerability in third-party software to breach an email platform used by five Japanese ISPs, exposing email addresses and passwords for millions of current and former customers. The company has since forced password changes, deployed EDR, and coordinated with Japanese authorities and affected ISPs to contain the incident. #KDDI #STNet #JCOM #ChubuTelecommunicationsC #NIFTYCorporation #BIGLOBE
Keypoints
- KDDI said attackers used a zero-day flaw in third-party software to access an ISP email platform.
- The breach affected STNet, JCOM, Chubu Telecommunications C, NIFTY Corporation, and BIGLOBE.
- Email addresses for 12,233,087 people and passwords for 7,616,173 accounts were exposed.
- KDDI is forcing password resets and securing inactive accounts with mandatory changes.
- The company deployed EDR, completed a forensic audit, and notified Japanese regulators.