Iwate Asahi Television, a regional broadcaster in Japan, suffered a ransomware attack on January 11, 2025. The attack encrypted internal file data stored on its corporate servers, disrupting normal system operations. The issue was first noticed when an employee reported system malfunctions, prompting the IT department to investigate. They discovered altered file names on the servers, confirming a ransomware attack.
The affected systems were isolated to prevent the spread of the attack, and recovery efforts were launched in collaboration with external investigators and its parent company, TV Asahi. By January 21, the compromised servers were restored, allowing the company to resume normal operations.
Efforts to contain the attack were effective, and the compromised terminal was disconnected from the network to mitigate further damage.
Initial investigations revealed no evidence of personal data being leaked as a result of the ransomware attack. Furthermore, there were no indications that the attack extended beyond the company’s internal network to other external systems. Broadcast operations remained unaffected throughout the incident, ensuring viewers experienced no service disruptions.
Iwate Asahi Television has pledged to continue a thorough investigation into the ransomware attack, seeking to uncover the full scope of the breach. The company plans to implement enhanced cybersecurity measures to prevent similar incidents in the future. Collaboration with cybersecurity experts and related organizations remains a priority to bolster the network’s defenses against evolving threats.
Reference: