Nippon Steel Solutions, a subsidiary of Nippon Steel, has disclosed a data breach stemming from a zero-day vulnerability exploited by unknown hackers. The Japan-based company reported that sensitive information regarding its customers, partners, and employees was accessed during the incident, prompting immediate action to safeguard its network.
Following the breach, Nippon Steel Solutions restricted external access to its network while launching a comprehensive investigation to determine the breach’s cause, scope, and method of intrusion. The company has pledged to comply with the Personal Information Protection Act, actively notifying affected individuals as it prepares a formal external announcement to address the incident.
According to the company, the compromised data could potentially include names, job titles, business email addresses, and telephone numbers. Although the stolen information has not yet appeared on any Dark Web platforms, Nippon Steel Solutions remains vigilant and is working to enhance its security measures to prevent future occurrences.
In a statement, the company expressed their sincere apologies for the disruption and concern caused to its business partners and related parties. This incident follows a previous threat made by the BianLian ransomware group in February, which claimed to have stolen data from Nippon Steel USA, raising questions about the possible connection between the two events.