HomeNewsSecurity & VulnerabilityHitachi Energy got hacked, and they aren't disclosing enough details.

Hitachi Energy got hacked, and they aren’t disclosing enough details.

-

We independently research, test, review, and recommend the best products—learn more about our process. If you buy something through our links, we may earn a commission. learn more

Last Updated on 17/03/2023 by TheDigitalHacker

Hitachi Energy, a global technology and infrastructure company, has recently confirmed that it suffered a data breach due to cyberattacks from the Clop and GoAnywhere ransomware groups. This news comes after reports surfaced earlier this week that Hitachi Energy had become the latest victim of these ransomware attacks.

Hitachi Energy got hacked, and they aren't disclosing enough details. 1

In response to the breach, the company released a statement acknowledging the attack and stating that it has taken measures to secure its systems and investigate the incident.

Hitachi, The company did not provide specific details about the number of affected individuals or the extent of the stolen data, they did confirm that sensitive information, including employee and customer data, had been stolen.

Hitachi Energy got hacked, and they aren't disclosing enough details. 2
Hitachi Office

As is common with many data breaches, Hitachi Energy has promised to provide further updates on the incident as the investigation progresses. It is also likely that the company will take additional measures to prevent future attacks and ensure the security of its systems going forward.

How did the attack happen?

The attack happened after one of the cloud and software suppliers of Hitachi had a vulnerability in the software Fortra MFT GoAnywhere, a managed transfer file software.

Related: GoAnywere parent company Rubrik confirms data theft

A series of events due to a single vulnerability

On February 6, 2023, an exploit for CVE-2023-0669 was publicly released, and on February 10, 2023, Clop declared that it had already breached 130 organizations leveraging the vulnerability in GoAnywhere MFT.

  1. On February 14, 2023, the first victim to confirm a breach from these attacks was healthcare giant Community Health Systems (CHS),
  2. On March 2nd, 2023, the fintech platform Hatch Bank declared a similar issue.
  3. Clop, which is a grand of hackers, began actively extorting Fortra’s customers a few days later. The proposal was not to release stolen data in exchange for ransom.

Rubrik, On march 14th 2023, After being added to the data leak site, confirmed that there was a breach. It felt like they have been knowing this for quite some time and kept their mouth shut and claimed that only non-production IT testing environments were affected but not any customer data.

Resources:

  1. Hitachi Press Release
  2. Go Anywhere vulnerability

elicia
elicia
Elicia is a technology and mobile tech industry enthusiast. She sleeps an eye open looking for industry updates and spends weekends fishing with her husband.
- Advertisment -

Must Read

Data Science Drives Personalized Marketing and Customer Engagement to New Heights...

0
Personalized marketing and customer engagement are crucial for businesses to thrive in the current digital era. Because data science makes it possible for marketers...