Mitsubishi Electric Blames Anti-Virus Bug for Data Breach

show-Zi

Level 36
Thread author
Verified
Top Poster
Well-known
Jan 28, 2018
2,463
Mitsubishi Electric Blames Anti-Virus Bug for Data Breach
Source: Mitsubishi Electric
Mitsubishi Electric says hackers exploited a zero-day vulnerability in its anti-virus software, prior to the vendor patching the flaw, and potentially stole trade secrets and employee data.
 

upnorth

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,457
Just a small note on this. Japan has a long time still today ongoing beef with South Korea and one part involved is, Mitsubishi Heavy Industries ( MHI ) that's one of the core companies in the Mitsubishi group. MHI was ordered 2018 by a South Korean court to compensate World War 2 survivors. What I know, MHI haven't paid anything as they refuse to comply.

In August 2019, Japan hit South Korea with export restrictions specifically on the electronic sector. That includes Samsung.

Even so, this latest hacking attack don't have to come from South Korea, but personal I wouldn't be surprised.
 

show-Zi

Level 36
Thread author
Verified
Top Poster
Well-known
Jan 28, 2018
2,463
No official comment has been issued by Mitsubishi Electric, but the press has begun to provide more details. The other day, Trend Micro revealed the existence of the vulnerability, but it appears that it was exploited before it was made public.

Although Mitsubishi is a large group, it seems that security measures are not uniform, such as adopting eset at Mitsubishi Motors.
 

[correlate]

Level 18
Top Poster
Well-known
May 4, 2019
801

upnorth

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,457
Another public negative mark in Trends brand. In this case it was the customer who found the sloppy hackers trail of crumbs. Mitsubishi found the hackers already in June 2019 and Trend released the patch in, October 2019. That's 4 months later! 🐢 And the initial issue that made it possible was after all, poor coding from Trend Micro. They can't crawl away from that responsibility how ever they twist or turn it.

Normally, and I hope Trend does the same as other responsible and adult enough AV companies/vendors done before, is just take the bullet and bite down on the sour lemon and tell everyone they messed up and let the storm pass away. Their brand is already hurting enough and they shouldn't want more eyes starting to search for more information as it ain't the first time Trend Micro got caught. Probably not the last either.

The sad part for Mitsubishi is that they more then likely is stuck with a :poop: deal that enforce them using the product/s years to come.
 
Last edited:

show-Zi

Level 36
Thread author
Verified
Top Poster
Well-known
Jan 28, 2018
2,463
In the first place, many users who purchase Trend Micro are not so concerned with security. I speculate that the impact on the Japanese market will not be significant.:sleep:
 
  • Like
Reactions: upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top