THE ASAHI SHIMBUN
January 14, 2022 at 15:25 JST
Hackers targeted major auto parts manufacturer Denso Corp. in a ransomware cyberattack in late December, but company officials said the incident has not affected business operations.
A hacker group calling itself Rook issued a statement on its website claiming responsibility for the cyberattack and said it had stolen 1.1 terabytes of data from Denso.
According to Nobuo Miwa, president of the internet security company S&J Corp., the posting by Rook about Denso was suddenly deleted on Jan. 4.
Miwa explained that Rook likely had ties to another hacking group that stopped operating last year and may have been trying to cover its tracks.
“These groups frequently change their names while conducting criminal behavior to avoid detection,” Miwa said.
Denso is Japan’s largest auto parts manufacturer with annual sales of 5 trillion yen ($44 billion). It belongs to the corporate group led by Toyota Motor Corp.
According to Denso officials, the company was aware of the cyberattack even before Rook claimed responsibility.
Company officials handling internet security investigated and determined their domestic computer systems had not been breached. They also determined that overseas business operations had not been affected.
But they learned that a North American facility had been hit by the ransomware virus. About 20 computers used in a plant in Mexico and connected to an old network were breached. All data and important information indispensable for business operations at that plant had already been transferred to a new computer network.
The Mexican plant was able to resume operations as planned on Jan. 3. It remains possible that the personal information of the workers at the Mexican plant was among the data stolen.
Denso officials said they could not comment on whether it paid the ransom or if it negotiated with Rook because local investigative authorities are currently looking into the case.
There have been frequent instances of ransomware attacks in recent years.
In 2020, Honda Motor Co. was forced to suspend operations at nine plants overseas after its system was hit with ransomware.
In November that year, the video game development giant Capcom Co. became the target of a ransomware attack.
Denso officials said they are investigating the latest attack to determine the weak spot in security that the hackers had found.
At one time, Rook disclosed part of the data it stole from Denso.
According to S&J, it is possible that the stolen data was published or sold on the dark web and could be used by other hacking groups for future attacks on Denso.
Many past ransomware attacks have been linked to Russian groups.
In May 2021, U.S. President Joe Biden said there was strong reason to believe that hackers in Russia were behind a cyberattack that stopped a U.S. pipeline from operating and he asked Russian authorities to deal with the matter.
(This article was written by Kohei Kondo and Senior Staff Writer Tatsuya Sudo.)
Here is a collection of first-hand accounts by “hibakusha” atomic bomb survivors.
A peek through the music industry’s curtain at the producers who harnessed social media to help their idols go global.
Cooking experts, chefs and others involved in the field of food introduce their special recipes intertwined with their paths in life.
A series based on diplomatic documents declassified by Japan’s Foreign Ministry
A series about Japanese-Americans and their memories of World War II