A massive security incident took place in Japan, as hackers managed to access Fujitsu’s ProjectWEB software, which is widely used by various Japanese government agencies and several key private firms. ProjectWEB is a complete SaaS (software as a service) solution that offers project management, security check tools, quality assurance, revision management, and progress monitoring tools, so it’s central to the operations of the entities deploying it in their environment. As such, the impact of the incident goes deep and wide.
According to the first reports that come from the country, several things have already been confirmed as compromised. Here are three key confirmations of a ProjectWEB-related breach.
Along with the confirmations of the breach came one positive investigation report from Chief Cabinet Secretary Katsunobu Katō, who told the press that the cabinet’s systems were not compromised and their operations have not been impacted.
Fujitsu has suspended the services of its SaaS platform to investigate the scope of the attacks and develop a comprehensive clean-up plan. As the firm mentions in the relevant announcement, they will cooperate with the compromised customers to move the investigation forward as quickly as possible and will provide whatever support they can to the affected victims.
Right now, there’s no word about who could be behind the attack, but recently, the Japanese authorities openly accused Chinese state-supported hackers of persistent targeting. The Chinese government refuted these claims as baseless and politically motivated, but the Japanese maintained their stance.