THE KDDI data breach affected approximately 12.23 million users, with hackers stealing email addresses and around 7.61 million passwords. KDDI confirmed the breach on June 23 and updated the public on the incident on July 6. The hackers exploited vulnerabilities within the software that KDDI uses, and while some passwords were hashed and salted, others were stored in plaintext. Users are urged to change their passwords and remain vigilant against phishing attacks. KDDI is working with email service providers on mitigations and enforcing mandatory password resets.
KDDI breach leaks 12.2m user emails, 7.6m passwords
CyberSIXT Evidence Panel
Source marked as original reporting
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
12 Million Impacted by Data Breach at Japanese Telco KDDI
securityweek.com
-
KDDI breach leaks 12.2m user emails, 7.6m passwords
securityonline.info
-
KDDI breach exposes 14.22M emails, passwords via third party flaw
databreaches.net
-
KDDI breach exposes 14.2 million emails across six Japanese ISPs
infosecurity-magazine.com