The attackers published the data after an unsuccessful blackmail attempt.
Nidec Corporation said hackers behind a ransomware cyberattack earlier this year stole data and published it on the dark web. The attackers tried to blackmail the company by demanding a ransom for the stolen information, but when they did not receive it, they decided to post the data on the network.
The attack took place in a Nidec Precision unit located in Vietnam. The division is engaged in the production of optical, electronic and mechanical equipment for the photographic industry. An internal investigation, which is still ongoing, found that the attackers gained access to the company's systems through stolen VPN credentials from one of the employees. By accessing the servers, they were able to download 50,694 files, including internal documents, letters from business partners, documents related to green procurement (environmentally friendly procurement), health and safety policies, and commercial documents such as purchase orders, invoices and contracts.
The company closed the entry point and implemented additional security measures on the recommendation of external cybersecurity experts. Nidec employees are trained to minimize such risks.
The 8BASE hacker group claimed involvement in the attack on June 18, 2024, claiming to have stolen data from Nidec systems on June 3. In their statements, the hackers said that they have access to a large amount of confidential information, including personal data. In July, Nidec confirmed the fact of a cyberattack, without naming specific attackers, indicating that the incident affected the Nidec Instruments division.
Later, on August 8, the Everest group, known for obtaining stolen data from other cybercriminals for new attempts to blackmail companies, also published data allegedly stolen from Nidec. In the latest statement, the corporation said that the attackers first contacted them on August 5. Nidec confirmed the authenticity of the data published on the dark web, but did not comment on the hackers' claims.
The corporation said that the stolen data could not lead to direct financial damage to the company or its contractors, no cases of unauthorized use of information were recorded. Nidec intends to directly notify the affected business partners.
Nidec Corporation is a global leader in precision engines, automotive components, industrial parts, home appliance parts, and robotic systems. The company operates in 40 countries, has 120,000 employees, and has an annual revenue of more than $11 billion.
Source
Nidec Corporation said hackers behind a ransomware cyberattack earlier this year stole data and published it on the dark web. The attackers tried to blackmail the company by demanding a ransom for the stolen information, but when they did not receive it, they decided to post the data on the network.
The attack took place in a Nidec Precision unit located in Vietnam. The division is engaged in the production of optical, electronic and mechanical equipment for the photographic industry. An internal investigation, which is still ongoing, found that the attackers gained access to the company's systems through stolen VPN credentials from one of the employees. By accessing the servers, they were able to download 50,694 files, including internal documents, letters from business partners, documents related to green procurement (environmentally friendly procurement), health and safety policies, and commercial documents such as purchase orders, invoices and contracts.
The company closed the entry point and implemented additional security measures on the recommendation of external cybersecurity experts. Nidec employees are trained to minimize such risks.
The 8BASE hacker group claimed involvement in the attack on June 18, 2024, claiming to have stolen data from Nidec systems on June 3. In their statements, the hackers said that they have access to a large amount of confidential information, including personal data. In July, Nidec confirmed the fact of a cyberattack, without naming specific attackers, indicating that the incident affected the Nidec Instruments division.
Later, on August 8, the Everest group, known for obtaining stolen data from other cybercriminals for new attempts to blackmail companies, also published data allegedly stolen from Nidec. In the latest statement, the corporation said that the attackers first contacted them on August 5. Nidec confirmed the authenticity of the data published on the dark web, but did not comment on the hackers' claims.
The corporation said that the stolen data could not lead to direct financial damage to the company or its contractors, no cases of unauthorized use of information were recorded. Nidec intends to directly notify the affected business partners.
Nidec Corporation is a global leader in precision engines, automotive components, industrial parts, home appliance parts, and robotic systems. The company operates in 40 countries, has 120,000 employees, and has an annual revenue of more than $11 billion.
Source
