Recently, there has been a surge in data leaks on a daily basis.
Jiji Press report[1]According to the report, today on the 10th, it was announced that the Tokyo Chamber of Commerce and Industry had been the victim of a targeted attack, resulting in a data leak. The leaked information included lists of seminar participants from the past three years that had been stored on the International Department's file sharing server. The information included names, phone numbers, email addresses, company names, etc. Financial information such as bank and securities accounts was not included. The Metropolitan Police Department plans to investigate the matter with a view to suspecting the provision of electronic records containing unauthorized instructions. The report was submitted to the Ministry of Economy, Trade and Industry on the 3th.[2].
Furthermore, the article states:
Since access to personal information was limited to staff in the International Affairs Department, no password was set. At this time, there have been no reports of damage, and only one computer has been infected.
But... I wish they'd stop thinking about perimeter security like this. They should put proper access control on data.
Hmm, wait a second. "No password was set" sounds strange. Maybe it wasn't put in a database and only accessible from the International Affairs Department's IP address, but rather it was an Excel file or something that wasn't password protected...
【footnote】
[1] Jiji Press, "Up to 201506 pieces of member information leaked = PC virus infection, Metropolitan Police Department investigation - Tokyo Shoko" http://www.jiji.com/jc/zc?k=2015061000093/2015&g=soc (accessed 6/10/XNUMX)
[2] Jiji Press, "Chief Cabinet Secretary Suga demands prevention of recurrence of information leak from Tokyo Stock Exchange" http://www.jiji.com/jc/zc?k=201506/2015061000403&g=eco