Japanese tech giant Fujitsu has revealed that several of its systems were infected by malware, leading to the theft of customer data.
Fujitsu, known as the world’s sixth largest IT services provider, with 124,000 employees and $23.9 billion in annual revenue, offers a wide range of services and products, including computing products, software, and telecommunications equipment. The company operates in over 100 countries and has a significant role in Japanese government projects and national security.
In a recent announcement on the company’s news portal, Fujitsu disclosed a major cybersecurity incident that compromised systems and customer data, stating, “We have confirmed the presence of malware on several of our business computers, and as a result of our internal investigation, it has been discovered that files containing personal information and information related to our customers could be illicitly removed.”
Fujitsu has reassured that they have taken steps to isolate the affected computers and strengthen monitoring of other systems. The company is currently investigating how the malware infiltrated their systems and what data was stolen. While no misuse of customer data has been reported, Fujitsu has informed the Personal Information Protection Commission and is preparing individual notices for affected customers.
BleepingComputer reached out to Fujitsu for further information regarding the impact on corporate clients and consumers, as well as the number of individuals/entities affected, but has not yet received a response.
This incident is not the first time Fujitsu has faced cybersecurity issues. In May 2021, the company’s ProjectWEB information sharing tool was exploited by hackers to breach multiple Japanese government agencies, resulting in the theft of 76,000 email addresses and proprietary data. The stolen data included sensitive information and potentially air traffic control data from Narita International Airport. The investigation concluded that hackers used stolen ProjectWEB credentials to carry out the breach and exposed vulnerabilities in the system, leading to its discontinuation and replacement with a more secure tool.
