Japanese ICT firm Fujitsu Ltd. has confirmed through a disclosure on Tuesday that 49 of its business computers used for its internal network in Japan were infected with malware disguised through advanced techniques.
The data breach, initially announced on March 15, originated from malware being installed in one of Fujitsu’s business computers and spread by executing copying commands.
At the time of writing, the company is unable to confirm whether the spread of the impact to Fujitsu’s computers in network environments exists outside of Japan.
“We would like to offer our deepest apologies to all those involved for the great concern and inconvenience caused,” the statement reads.
“These work computers are not devices that manage the cloud services that we provide. In addition, since no traces of access to the services that we provide to our customers were found, we have determined that the damage has not spread outside the company, including to customer environments.”
A closer look at the company’s communication and operation logs revealed that the malware also copied files containing personal identifiable information (PII) of some individuals and information related to the business of customers.
“We have reported this to the affected customers individually and are taking the necessary measures. At this time, we have not received any reports that personal information or information related to customers’ business has been misused,” the company clarified.
As a countermeasure, Fujitsu has already isolated the infected business PCs, blocked the external server connections used by the attackers, and enhanced the functionality of its virus detection software.
“In light of this incident, our company will strive to further strengthen its information security,” the company affirmed.
In May, Fujitsu Philippines launched its first Digital Innovation Hub for the Southeast Asian region in Makati, providing local customers access to its business and technology specialists.