Fujitsu reprimanded by japanese government for insufficient cybersecurity measures

Fujitsu, the Japanese IT giant, has recently come under fire from Japanese authorities because of its weak cybersecurity measures that have led to data breaches affecting at least 1,700 companies and government agencies. Authorities on Friday asked Fujitsu to implement corrective measures to address issues arising from a hack attack on its cloud service, blaming the data leaks on poor governance.

Details of the attack and criticisms of Fujitsu's procedures

The Ministry of Internal Affairs and Communications has raised questions about the timing with which Fujitsu discovered the hack, which took 8 months. Several incidents of data breaches occurred between March 2022 and November, but were only detected in December. "We see serious problems with security measures, oversight mechanisms and risk management," said a communications ministry official.

The broader context and implications for cyber security

Fujitsu's cloud-based Fenics service, used by government agencies and businesses, has been at the heart of the matter. Fujitsu has encountered security problems due to a misconfiguration of network equipment, as well as not detecting unauthorized access. Of note, the company has experienced cyberattacks on two more of its cloud services since 2021. Even though Fujitsu was implementing preventative measures, the Fenics service was still affected.

Long-term implications and possible repercussions

This incident marks the first time the government has provided law-based guidance on telecom activities following cyberattacks. Faced with the increase in cyber threats, the government has required companies to strengthen their cyber security measures. Although Fujitsu expects a record net income for the second consecutive year for fiscal 2023, wavering confidence in its cybersecurity could cast a shadow on long-term performance.