With their official statement, Casio confirms that the attackers accessed and stole personal data that belonged to their employees, contractors, business partners, and even people who have been interviewed for the company along with more sensitive information regarding the company financials, involving human resources, and event technical information.
Casio also informed the public that hackers accessed “information about some customers”, however, they did not make public which type of data had been stolen and how many individuals had been affected.
Yet, Casio made clear that credit card data information was not compromised, talking about their ID and ClassPAd services that were not affected by the security breach. The attackers behind the cybersecurity breach have not been made public yet. However, a ransomware and extortion racket named Underground has claimed responsibility for the attack.
Upgrownd is a newer extortion and ransomware organization, that was first observed realizing cyberattacks in June last year. Even more so in a post on the dark web, Underground has claimed that they have extracted more than 200 gigabytes of data from Casio, also talking about legal documents, payroll data, and personal information. And, in order to prove their attack, they have posted samples of the data they have extorted.
Casio also reported “As a result, some important systems within the Company and its affiliated companies have become unusable, and some services have also been affected.
The full extent of the damage is still under investigation, but the Company has set up a task force and is currently working diligently to quickly restore internal systems and resume operations.”
As of now, it is still unknown whether or not Casio has received ransom demands, Casio saying that “full extent of the damage” will be investigated.
.webp)
.webp)
