Fujitsu’s SaaS Hack Affects Japanese Government

Malicious actors accessed data from several Japanese official government agencies after hacking into Fujitsu’s SaaS (software-as-a-service) platform!

Fujitsu, a Japanese multinational tech giant had to disable ProjectWEB, the company’s SaaS platform after suffering a cyber attack.

Take a Moment to Stay Tuned Forever

Subscribe to get weekly cyber security updates!

As you can see from the image below, the site: https://pjshr170.soln.jp/IJS02E8/pjwebroot/login.jsp can’t be reached.

fujitsu-down — ProjectWEB portal taken down after the attack (Source: BleepingComputer)

As of now, the attack is believed to have affected the Ministry of Land, Infrastructure, Transport, and Tourism. Also, the Narita Airport and the Cabinet Secretariat were impacted as well. According to The Record, hackers potentially stole some data that includes 76,000 email addresses of employees and contractors. However, officials have not confirmed it yet.

ProjectWeb — Fujitsu’s SaaS overview: illustration of different use examples of the info-sharing tool (Source: Fujitsu)

The Company’s Statement:

“Fujitsu can confirm unauthorized access to ProjectWEB, a collaboration and project management software, used for Japanese-based projects.”

“Fujitsu is currently conducting a thorough review of this incident, and we are in close consultation with the Japanese authorities. As a precautionary measure, we have suspended use of this tool, and we have informed any potentially impacted customers.”

Related to the incident, the Cabinet Secretariat’s national cybersecurity center (NISC) has issued multiple warnings to every government agency and organization using Fujitsu’s SaaS. The warning includes monitoring any suspicious activity of unauthorized access and information leakage.

Fujitsu states that they will be notifying concerned authorities to investigate the matter and will also identify the cause of the attack.

Furthermore, the company has also released a post ‘Unauthorized access to the project information sharing tool’ that says (translating from Japanese):

“We deeply apologize for the great concern and inconvenience caused to all the parties involved in this case.”

“We will continue to work on investigating and analyzing the scope of impact and the causes of all projects that use “Project WEB” with the cooperation of our customers.”

“We take this case very seriously and will continue to consult with the relevant authorities and make every effort to support the victims.”

Turn Your Employees Into A Cyber Threat Shield

Make your employees proactive against prevailing cyber attacks with ThreatCop!

Get Free Phishing Simualtion