Kadokawa Corporation Hit by BlackSuit Ransomware Group

Incident Date: Sep 10, 2024

Attack Overview

VICTIM

Kadokawa Co Jp

INDUSTRY

Media & Internet

LOCATION

Japan

ATTACKER

Black Suit

FIRST REPORTED

September 10, 2024

Request Removal

Ransomware Attack on Kadokawa Corporation by BlackSuit Group

In a significant cybersecurity incident, the ransomware group BlackSuit has claimed responsibility for an attack on Kadokawa Corporation, a prominent Japanese media conglomerate. The attack, which occurred in June, has led to the alleged release of 1.5 terabytes of sensitive data, including business partner contracts, internal documents, and personal information of employees from its subsidiary, Dwango.

About Kadokawa Corporation

Kadokawa Corporation, headquartered in Chiyoda-ku, Tokyo, is a multifaceted entity in the media and entertainment industry. Formed on October 1, 2014, through the merger of the original Kadokawa Corporation and Dwango Co., Ltd., the company operates across various sectors including publishing, film production, digital content, and video games. Kadokawa is renowned for its extensive publishing operations, popular anime productions, and the operation of the video-sharing platform Niconico.

Attack Overview

The ransomware attack by BlackSuit, formerly known as Royal, has significantly impacted Kadokawa's operations. The group threatened to release the stolen data unless a ransom was paid. Kadokawa is currently collaborating with law enforcement and external cybersecurity experts to assess the breach's impact. The company has assured that no new cyberattacks have been detected and is maintaining vigilant monitoring of the situation.

About BlackSuit Ransomware Group

BlackSuit is a sophisticated ransomware group known for targeting high-profile organizations. The group employs advanced tactics, including exfiltration-based extortion, where they threaten to release sensitive data if their ransom demands are not met. BlackSuit's ability to penetrate systems often involves exploiting vulnerabilities in remote desktop protocols (RDP) and using custom backdoors to gain access to their targets' networks.

Vulnerabilities and Impact

Kadokawa's extensive digital operations and the sensitive nature of its data make it a prime target for ransomware groups like BlackSuit. The compromised data reportedly includes critical business information and personal data, which could have severe financial and reputational consequences for the company. The attack underscores the importance of comprehensive cybersecurity measures, especially for organizations handling vast amounts of digital content and intellectual property.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.