Mitsubishi Electric, one of the world's largest electronics and electrical equipment manufacturing firms, was hit by a major security breach.
Chinese-linked cyber-espionage group named Tick (or Bronze Butler) is the primary suspect.
The intrusion was detected after Mitsubishi Electric staff found a suspicious file on one of the company's servers.
The intrusion was later tracked to a compromised employee account.
Hackers escalated their access from this initial entry point to Mitsubishi Electric's internal systems, gaining access to the networks of around 14 company departments, such as sales and the head administrative office.
Hackers stole sensitive data from the company's internal network.
Hackers compromised tens of PCs and servers in Japan and overseas from where they stole around 200 MB of files, mostly business documents.
Source: https://www.zdnet.com/article/mitsubishi-electric-discloses-security-breach-china-is-main-suspect/
TPRM report: https://scoringcyber.rankiteo.com/company/mitsubishielectric
"id": "mit2023111222",
"linkid": "mitsubishielectric",
"type": "Breach",
"date": "06/2019",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Electronics',
'location': 'Japan',
'name': 'Mitsubishi Electric',
'size': 'Large',
'type': 'Electronics and Electrical Equipment '
'Manufacturer'}],
'attack_vector': ['Compromised Employee Account', 'Suspicious File'],
'data_breach': {'data_exfiltration': '200 MB of files',
'sensitivity_of_data': 'Sensitive',
'type_of_data_compromised': 'Business Documents'},
'description': "Mitsubishi Electric, one of the world's largest electronics "
'and electrical equipment manufacturing firms, was hit by a '
'major security breach. Chinese-linked cyber-espionage group '
'named Tick (or Bronze Butler) is the primary suspect. The '
'intrusion was detected after Mitsubishi Electric staff found '
"a suspicious file on one of the company's servers. The "
'intrusion was later tracked to a compromised employee '
'account. Hackers escalated their access from this initial '
"entry point to Mitsubishi Electric's internal systems, "
'gaining access to the networks of around 14 company '
'departments, such as sales and the head administrative '
"office. Hackers stole sensitive data from the company's "
'internal network. Hackers compromised tens of PCs and servers '
'in Japan and overseas from where they stole around 200 MB of '
'files, mostly business documents.',
'impact': {'data_compromised': 'Sensitive data, business documents',
'systems_affected': ['PCs', 'Servers']},
'initial_access_broker': {'entry_point': 'Compromised Employee Account',
'high_value_targets': ['Sales',
'Head Administrative '
'Office']},
'motivation': 'Cyber-espionage',
'threat_actor': 'Tick (or Bronze Butler)',
'title': 'Major Security Breach at Mitsubishi Electric',
'type': 'Data Breach'}