Fujitsu SaaS Hack Sends Govt. of Japan Scrambling

[silversurfer]

Threat actors have stolen files from several official government agencies of Japan by hacking into Fujitsu’s software-as-a-service (SaaS) platform and gaining access to its systems.
 
The Japan-based tech giant temporarily disabled ProjectWEB enterprise after learning of the attack, which is known to have affected the Ministry of Land, Infrastructure, Transport, and Tourism; the Cabinet Secretariat; and the Narita Airport so far but may have had other victims, according to a post on analyst firm Recorded Future’s The Record.
 
ProjectWEB is a a cloud-based enterprise collaboration and file-sharing platform that Fujitsu has operated since the mid-2000s, and which a number of agencies within the Japan government currently use.

Fujitsu’s Cabinet Cyber Security Center (NISC), which is investigating the incident, said the breach was discovered on Monday and issued a release the following day with guidance to all government agencies to take countermeasures to see if they are using ProjectWEB.
 
If so, NISC advised agencies to investigate to see if they also were breached, according to a statement posted online Tuesday (PDF), and to report unauthorized access or data leaks.
 
Fujitsu decided to suspend the operation of ProjectWEB on Tuesday following pressure from NISC, apologizing “for the great concern and inconvenience” the breach caused its customers.
 
“We will continue to work on investigating and analyzing the scope of impact and the causes of all projects that use [ProjectWEB] with the cooperation of our customers,” according to the statement (translated from Japanese). “We take this case very seriously and will continue to consult with the relevant authorities and make every effort to support the victims. that’s all Inquiries regarding this matter.”

Read more: Fujitsu SaaS Hack Sends Govt. of Japan Scrambling | Threatpost