Fujitsu Suffers Worm-Like Attack From Something That Wasn’t Ransomware

Home » Fujitsu Suffers Worm-Like Attack From Something That Wasn’t Ransomware
Fujitsu Suffers Worm-Like Attack

The consumer electronics giant disclosed its findings on a cyberattack in March, which involved data exfiltration impacting its Japanese operations.

After months of investigation, Fujitsu has clarified that the malware affecting its systems in a March cyberattack was not ransomware, contrary to earlier speculation. The company revealed that the malicious software was a self-propagating binary that infiltrated its internal networks in Japan.

Detailing its findings this week, the consumer electronics and networking giant explained that the malware initially compromised one of Fujitsu’s business PCs, originating from an external server (though the initial access method was unspecified). Fujitsu described the malware as “highly evasive,” employing sophisticated techniques to conceal its presence while spreading to 49 other PCs within the network.

The impact was confined to its operations in Japan.

“The affected computers did not use Fujitsu’s cloud services,” the company clarified in its advisory. “Furthermore, there was no evidence of unauthorized access to Fujitsu’s customer-facing services. The investigation concluded that the incident did not extend beyond the company’s business computers, including customer network environments.”

Nevertheless, the cyberattack resulted in data being extracted, including files containing “personal or business-related information about certain customers.”

Fujitsu has since bolstered its security measures, including the implementation of security monitoring rules for the unidentified malware across all business PCs, and enhancements to virus detection software capabilities and updates.

 

Mitigate cyber threats effectively with Keplersafe's expert solutions.