Ethical Hacking News
A major data breach at Japanese telecom giant NTT has exposed sensitive information belonging to 17,891 companies. The breach occurred in early February 2025 and is being described as one of the most significant and far-reaching data breaches in recent history.
NTT Communications Corporation suffered a major data breach in early February 2025.The breach exposed sensitive information belonging to 17,891 companies.The breach was contained on February 15, 2025, after the company disconnected a compromised device from its network.Types of data stolen include customer names, phone numbers, email addresses, and physical addresses.NTT has experienced other data breaches in recent years, including one in May 2020.The company will not be sending personalized notifications to impacted customers, instead relying on a public announcement on its website.
In a shocking revelation that has left corporate customers reeling, a major data breach at Japan's largest telecom giant, NTT Communications Corporation (NTT), has resulted in the exposure of sensitive information belonging to 17,891 companies. The breach, which occurred in early February 2025, is being described as one of the most significant and far-reaching data breaches in recent history.
According to an official statement issued by NTT on February 5, 2025, the company discovered that its facilities had been subjected to unauthorized access. The exact date when hackers gained initial access to NTT's systems has not yet been determined, adding to the mystery surrounding this high-profile breach.
On February 6, 2025, NTT confirmed that some information might have been leaked externally. This revelation came after a thorough investigation by the company's cybersecurity team, who worked tirelessly to identify the source of the breach and contain its spread.
In an effort to provide transparency and accountability, NTT has revealed that hackers breached its 'Order Information Distribution System,' which held detailed records of 17,891 corporate customers. These customers can be categorized as companies that received services from NTT's mobile phone business or those who purchased smartphones directly from the company.
The types of data that may have been stolen by hackers include customer names (registered contract names), customer representative's names, contract numbers, phone numbers, email addresses, physical addresses, and service usage information. It is essential to note that contracts for corporate smartphones and mobile phones provided directly by NTT Docomo were not affected by this incident.
The breach was contained on February 15, 2025, after the company disconnected a device on its network that had been compromised by hackers. While NTT has expressed confidence in having fully contained the threat, the incident highlights the constant and evolving nature of cyber threats.
NTT's cybersecurity troubles are not new. In January 2025, the company suffered a massive 12-hour service disruption on its mobile services and payment platforms due to a distributed denial of service (DDoS) attack. This event underscores the vulnerabilities that exist within NTT's systems and emphasizes the need for ongoing vigilance in addressing cyber threats.
Furthermore, NTT has experienced other data breaches in recent years. In May 2020, hackers gained access to its internal network once again, resulting in the theft of information belonging to hundreds of customers. These incidents have raised concerns about the company's ability to protect sensitive customer data and maintain its cybersecurity posture.
In light of this latest breach, NTT has emphasized that it will not be sending personalized notifications to impacted customers. Instead, the public announcement on its website will serve as the sole notice for those affected by the incident. While this decision may be seen as a cost-effective measure, it raises questions about transparency and accountability in the face of such significant data breaches.
The incident serves as a stark reminder of the ever-present threat landscape that businesses, including large corporations like NTT, must navigate to protect their sensitive customer data. As cybersecurity threats continue to evolve and become more sophisticated, companies must remain vigilant and proactive in addressing these risks.
In conclusion, the data breach at NTT Communications Corporation is a significant event that highlights the ongoing struggle between companies to protect their sensitive customer information. As we move forward, it is essential for businesses to prioritize robust cybersecurity measures and foster open communication with their customers to ensure that they are well-informed about potential threats.
Related Information:
https://www.ethicalhackingnews.com/articles/Data-Breach-at-Japanese-Telecom-Giant-NTT-A-Devastating-Blow-to-Corporate-Customers-ehn.shtml
https://www.bleepingcomputer.com/news/security/data-breach-at-japanese-telecom-giant-ntt-hits-18-000-companies/
Published: Fri Mar 7 09:01:20 2025 by llama3.2 3B Q4_K_M
