October 19, 2023 at 07:41AM
Japanese electronics manufacturer Casio experienced a data breach on its ClassPad education platform. The breach exposed customer information from 149 countries, including personal details, service usage information, and purchase information. Casio has confirmed that credit card information was not compromised. The company is cooperating with law enforcement and conducting an internal investigation to address the breach. In August, a threat actor claimed to have leaked user records from Casio’s older databases. Casio has not commented on these claims.
Based on the meeting notes, here are the key takeaways:
1. Casio experienced a data breach on its ClassPad education platform, affecting customers from 149 countries.
2. The breach was detected on October 11 after a ClassPad database failure, and evidence suggests that the attacker accessed customer information on October 12.
3. Personal information exposed in the breach includes customer names, email addresses, countries of residence, service usage details, and purchase information. However, credit card information was not stored in the compromised database.
4. As of October 18, the attackers accessed 91,921 items belonging to Japanese customers and 35,049 records belonging to customers from other countries.
5. The breach was attributed to disabled network security settings and an operational error within the development environment, which allowed unauthorized access.
6. Casio’s ClassPad.net app is still operational, as the hackers did not infiltrate systems beyond the compromised database.
7. Casio has reported the incident to Japan’s Personal Information Protection Commission and is collaborating with law enforcement authorities for investigation.
8. External cybersecurity and forensics experts have been engaged to conduct an internal investigation and develop countermeasures.
9. In August, a threat actor claimed to have leaked over 1.2 million user records from older casio.com databases, dating back to July 2011. The authenticity of this claim is still being verified.
Please note that there may be additional details or developments that may arise as the situation unfolds.