RSS
Логотип
Баннер в шапке 1
Баннер в шапке 2
2023/06/30 23:23:24

Information Security in Japan

Content

Ransomware Viruses in Japan

Main article: Ransomware viruses (ransomware) in Japan

2023

Japanese aerospace electronics manufacturer Japan Aviation Electronics has admitted that hackers gained access to the company's servers. IT systems shut down

On November 2, 2023, Japan Aviation Electronics, a manufacturer of aerospace electronics, was subjected to a cyber attack, during which hackers were able to gain access to the company's servers. As a result of the invasion, a number of affected IT systems had to be completely shut down. Read more here.

The Japanese information security agency admitted to hacking its IT system. Hackers stole public data for 9 months in a row

On August 29, 2023, the National Center for Incident Preparedness and Cybersecurity Strategy of Japan (NISC) reported hacking its information infrastructure and leaking user personal data. Read more here.

Japan on cyber war fire: Who and why is attacking the country

In Japan, the number of cases of loss of confidential data and violation of business operations due to ransomware attacks is growing. This is stated in a study by Rapid7, the results of which were released on June 28, 2023.

As the third largest economy in the ​​mire after the United States and China, Japan is home to global corporations with a complex network of overseas operations, including subsidiaries, third-party suppliers and other structures. This is of particular interest to cybercriminals. The Rapid7 report says that in late 2022 and early 2023, LockBit ransomware operators 3.0 often targeted Japanese organizations - primarily manufacturing companies. The fact is that such enterprises can incur colossal losses as a result of downtime, which is used by cybercriminals demanding a ransom.

Cyber attacks are on the rise in Japan

Шаблон:Quote 'When a Japanese manufacturer's activities are disrupted, it could have implications for the supply chain around the world, as many other businesses depend on shipments of components from Japan, "said Paul Prudhomme, chief analyst at Rapid7.

The study showed that hacks of large Japanese corporations often occur through the computer infrastructures of subsidiaries or partners. Small firms are usually worse protected than their parent structures, and therefore can be used by hackers as a path of penetration. It is also said that the interest for attackers is intellectual property, the rights to which belong to Japanese developers. In general, as noted in the report, it is the size of the Japanese economy that makes this country an attractive target for cyber attacks. At the same time, an increase in the intensity of DDoS attacks on the websites of Japanese government organizations and private sector companies is recorded.[1]

Japanese government announces move to American cybersecurity standards

On June 23, 2023, it became known about the decision of the Japanese authorities to oblige government contractors to use American cybersecurity standards.

According to the Nikkei resource, we are talking primarily about the protection of confidential information. The new rules will affect over 1,000 companies in a wide variety of fields, including think tanks and telecom operators. As part of this initiative, the government's cybersecurity strategy office will revise information security standards for central ministries and independent administrative departments.

Japanese authorities will oblige government contractors to use US cybersecurity standards

The guidelines provide for eight review points under U.S. cyber countermeasures rules NIST SP 800-171, which cover contractors and suppliers to the U.S. Department of Defense (Pentagon), NASA and other U.S. federal agencies. In accordance with the new requirements, contractors will have to restrict access to their information systems, check the security of people who can be granted access, implement means for regular risk assessment and monitoring, and protect the channels for the transfer of confidential information.

Companies that do not meet these standards will not be able to enter into government contracts. Moreover, even after signing an agreement on the performance of work, contractors will have to regularly report on cybersecurity measures.

According to a study conducted by the National Institute of Information and Communication Technologies of Japan, the number of cyber attacks worldwide increased 8.5 times between 2015 and 2020. In this light, the adoption of American cybersecurity standards is expected to improve the security of critical systems. The new rules already apply to those companies that perform work on orders from the Japanese Ministry of Defense.[2]

Notes