In late March, Hoya Corp., a Japanese optics manufacturer renowned for its ophthalmic lenses, experienced a debilitating cyberattack that led to the cessation of production for multiple product lines. The incident, suspected to be the result of unauthorized access to the company’s servers, prompted Hoya to take immediate action to isolate the affected servers. Subsequently, on April 4, Hoya revealed that it had detected an anomaly in one of its overseas offices the previous Saturday, attributing it to a probable “unauthorized access.”
While the cybercriminal group Hunters International has not publicly claimed responsibility for the attack on Hoya, indications suggest their involvement. Reports indicate that the attackers initially demanded a ransom of $10 million and boasted of exfiltrating a staggering amount of data, comprising over 1.7 million files totaling 2 terabytes. The modus operandi of Hunters International includes threatening to disclose sensitive information to clients, partners, employees, and competitors if their demands are not met, as well as adhering to a strict non-negotiation policy.
Efforts to negotiate with the cybercriminals proved futile for Hoya, as they adamantly rejected offers, signaling their uncompromising stance. Despite attempts to reach out to Hoya for comment, responses from the company’s press service have yet to be received. The incident underscores the evolving threat landscape faced by organizations globally and the growing sophistication of cybercriminal operations, necessitating robust cybersecurity measures and heightened vigilance.
