Eisai Hit by Ransomware Attack Amid Rising Cyber Threats in Japan
Japanese pharmaceutical giant Eisai confirmed it fell victim to a ransomware attack over the weekend, prompting an immediate company-wide response. The incident, detected on Saturday night, led Eisai to assemble a task force and collaborate with external cybersecurity experts and law enforcement to assess the breach.
While the company’s corporate websites and email systems remain operational, some internal and external computer systems were taken offline as a precaution. Eisai is investigating the potential for data leaks but has not yet determined the full scope of the attack, warning that the assessment may take time. The financial impact on earnings is also under review, with updates promised if revisions to forecasts are needed.
The attack comes as Japan faces a surge in cyber threats, with officials suggesting the country may be targeted ahead of its role as G7 summit host. Since March, a wave of attacks believed to be linked to the same hacker group has disrupted major organizations, including West Japan Railway, Tokyo Electric Power Company Holdings, and local governments.
Eisai’s incident follows a string of high-profile cyberattacks on pharmaceutical firms globally. In May, Merck secured a legal victory in its case over the 2017 NotPetya attack, which the U.S. attributed to Russian military intelligence. Other recent breaches include German biotech Evotec’s April network shutdown and India’s Sun Pharma’s March security incident. Last year, Novartis also faced an attack by the hacking group Industrial Spy, though the company confirmed no sensitive data was compromised.
Evotec cybersecurity rating report: https://www.rankiteo.com/company/evotec
Eisai Co., Ltd. cybersecurity rating report: https://www.rankiteo.com/company/eisaiglobal
"id": "EVOEIS1775594384",
"linkid": "evotec, eisaiglobal",
"type": "Ransomware",
"date": "6/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Pharmaceuticals',
'location': 'Japan',
'name': 'Eisai',
'type': 'Pharmaceutical Company'}],
'data_breach': {'data_exfiltration': 'potential data leaks under '
'investigation'},
'date_detected': '2023-06-10',
'description': 'Japanese pharmaceutical giant Eisai confirmed it fell victim '
'to a ransomware attack over the weekend, prompting an '
'immediate company-wide response. The incident, detected on '
'Saturday night, led Eisai to assemble a task force and '
'collaborate with external cybersecurity experts and law '
'enforcement to assess the breach.',
'impact': {'data_compromised': 'potential data leaks under investigation',
'financial_loss': 'under review',
'operational_impact': 'corporate websites and email systems remain '
'operational',
'revenue_loss': 'under review',
'systems_affected': 'some internal and external computer systems '
'taken offline'},
'investigation_status': 'Ongoing',
'ransomware': {'data_exfiltration': 'potential data leaks under '
'investigation'},
'references': [{'source': 'News Article'}],
'response': {'containment_measures': 'some internal and external computer '
'systems taken offline',
'incident_response_plan_activated': 'Yes',
'law_enforcement_notified': 'Yes',
'third_party_assistance': 'external cybersecurity experts'},
'title': 'Eisai Ransomware Attack',
'type': 'Ransomware'}