{"id":4408,"date":"2024-07-10T19:00:00","date_gmt":"2024-07-11T00:00:00","guid":{"rendered":"https:\/\/www.darkreading.com\/endpoint-security\/fujitsu-suffers-worm-attack-not-ransomware"},"modified":"2024-07-10T19:00:00","modified_gmt":"2024-07-11T00:00:00","slug":"fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/07\/10\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware\/","title":{"rendered":"Fujitsu Suffers Worm-Like Attack From Something That Wasn&#8217;t Ransomware"},"content":{"rendered":"<div class=\"media_block\"><a href=\"https:\/\/i0.wp.com\/eu-images.contentstack.com\/v3\/assets\/blt6d90778a997de1cd\/blt171e224e6bd430f1\/668ef516c06f6267c7e125b0\/tokyo_japan-Patrick_Batchelder-Alamy.jpg?ssl=1\"><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware.jpg?w=640&#038;ssl=1\" class=\"media_thumbnail\"><\/a><\/div>\n<div><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware.jpg?w=640&#038;ssl=1\" class=\"ff-og-image-inserted\"><\/div>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">After months of postmortem investigation, Fujitsu now says the malware that affected its systems in a <\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"><a class=\"ContentText-BodyTextChunk ContentText-BodyTextChunk_link\" target=\"_blank\" href=\"https:\/\/www.darkreading.com\/cyberattacks-data-breaches\/fujitsu-malware-on-company-computers-exposed-customer-data\" rel=\"noopener\">cyberattack last March<\/a><\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"> was not ransomware as previously speculated \u2014 and noted that the binary self-propagated, worming its way through the company&#8217;s internal networks in Japan.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">In its rundown of the investigative findings this week, the consumer electronics and networking giant confirmed that the malware first established a beachhead on one of Fujitsu&#8217;s business PCs, attacking from an external server (it didn&#8217;t mention what the initial access method was). The malware was &#8220;particularly difficult to detect,&#8221; according to Fujitsu, using sophisticated techniques to cloak itself as it replicated onto 49 other PCs within the network.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">Only its Japanese footprint was affected.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">&#8220;The affected computers were not managed through the cloud services provided by Fujitsu,&#8221; the company noted in <\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"><a class=\"ContentText-BodyTextChunk ContentText-BodyTextChunk_link\" target=\"_blank\" href=\"https:\/\/www.fujitsu.com\/global\/about\/resources\/news\/notices\/2024\/0709-01.html?_gl=1*w132o0*_gcl_au*MTgxMjQ4MTE1OC4xNzIwNjI4Nzc0*_ga*OTA0OTU2NDQ4LjE3MjA2Mjg3NzU.*_ga_3XKLQLRH61*MTcyMDYyODc3NC4xLjAuMTcyMDYyODc3NC42MC4wLjA.\" rel=\"noopener\">the advisory<\/a><\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">. &#8220;Additionally, no trace of access to the services provided by Fujitsu to customers was found. The investigation concluded that the damage did not spread outside of the company&#8217;s business computers, including to customers&#8217; network environments.&#8221;<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">Nonetheless, the attack resulted in data exfiltration, including files containing &#8220;personal or business-related information about certain customers.&#8221;<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">The company said it has since beefed up its security measures, including implementing security monitoring rules for the unnamed malware to all business PCs, and enhancing virus detection software functions and updates.<\/span><\/p>\n<p><a href=\"https:\/\/www.darkreading.com\/endpoint-security\/fujitsu-suffers-worm-attack-not-ransomware\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>After months of postmortem investigation, Fujitsu now says the malware<\/p>\n","protected":false},"author":12,"featured_media":4409,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[809],"class_list":["post-4408","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-dark-reading"],"featured_image_urls":{"full":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?fit=2560%2C1440&ssl=1",2560,1440,false],"thumbnail":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?resize=150%2C150&ssl=1",150,150,true],"medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?fit=300%2C169&ssl=1",300,169,true],"medium_large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?fit=640%2C360&ssl=1",640,360,true],"large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?fit=640%2C360&ssl=1",640,360,true],"1536x1536":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?fit=1536%2C864&ssl=1",1536,864,true],"2048x2048":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?fit=2048%2C1152&ssl=1",2048,1152,true],"chromenews-featured":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?fit=1024%2C576&ssl=1",1024,576,true],"chromenews-large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?resize=825%2C575&ssl=1",825,575,true],"chromenews-medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?resize=590%2C410&ssl=1",590,410,true]},"author_info":{"display_name":"Dark Reading","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/darkreading\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","jetpack_featured_media_url":"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/fujitsu-suffers-worm-like-attack-from-something-that-wasnt-ransomware-scaled.jpg?fit=2560%2C1440&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4408","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=4408"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4408\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media\/4409"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=4408"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=4408"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=4408"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}