Japan’s Yorozu Corporation, one of Japan’s largest auto component manufacturers, fell victim to a ransomware cyber attack, forcing it to delay the submission of its half-yearly financial report until 2025/1. As a result of the attack, basic operations, including the audit of financial data, were disrupted.
The attacker used an encryption key to encrypt the company’s important files and block access to them. The first signs of the attack were detected on October 14, and after that the company quickly implemented cyber security measures, isolating the affected servers. At the same time, a response team was formed with the participation of third-party experts to assess the extent of damage and restore the systems.
The company confirmed the possibility of a leak of sensitive data, including personal data, and reported it to law enforcement and the Japanese data protection authority. Yorozu also enlisted the help of outside experts to investigate and mitigate potential risks of information leakage.
The company contacted law enforcement authorities and provided recommendations on further actions related to the redemption request.