Hackers have reportedly breached numerous official Japanese government agencies by exploiting Japan-based tech giant company Fujitsu’s ProjectWEB cloud-based collaboration platform.
Fujitsu has temporarily disabled ProjectWEB enterprise upon learning of the attack. ProjectWEB is a software-as-a-service (SaaS) platform operating since the mid-2000s to manage projects and enable enterprise collaboration and file-sharing.
“Fujitsu can confirm unauthorized access to ProjectWEB … Fujitsu is currently conducting a thorough review of this incident, and we are in close consultation with the Japanese authorities. As a precautionary measure, we have suspended the use of this tool, and we have informed any potentially impacted customers,” said Fujitsu to ZDNet.
Japan’s public broadcaster NHK reported that the breach has affected several government entities including the Ministry of Land, Infrastructure, Transport, and Tourism; the Cabinet Secretariat; and Narita Airport.
Fujitsu did not officially disclose the extent and scope of the attack but the Japanese press claimed that more than 76,000 email addresses for employees and contractors are stolen from the Ministry of Land, Infrastructure, Transport, and Tourism office.
The Cabinet Cyber Security Center (NISC) is currently overseeing the investigation of the intrusion. They reported that the breach is discovered on Monday and they issued a release the following day to all government agencies with guidance to take countermeasures.
At the time of this writing, it is not yet clear who the threat actors behind the attacks are and how they were able to exploit service.