On August 22, 2024, the Kobe Steel Health Insurance Association reported a serious data breach involving unauthorized access to a server managed by Hirokei Co., Ltd., a contractor for the Kansai Information Center. The breach, attributed to a ransomware attack, exposed personal information that had been stored on the compromised server. This incident has raised significant concerns regarding data security and the protection of personal information.
The breach affected the personal data of 86,936 individuals, including names, genders, dates of birth, addresses, telephone numbers, and health insurance card numbers. Fortunately, sensitive information such as medical histories and My Number data was not included in the leak. The affected individuals comprised those who had lost eligibility as of 2017, insured persons, and dependents.
In response to the incident, the Kobe Steel Health Insurance Association has taken several measures. They reported the breach to relevant authorities, including the Personal Information Protection Commission and the Kinki Regional Bureau of Health and Welfare, on August 23, 2024. To address the issue and prevent future occurrences, the association plans to send individual notifications to affected individuals starting at the end of September. Additionally, they have set up a dedicated contact point for inquiries and concerns related to the breach.
While there have been no confirmed cases of misuse of the leaked information, the association advises caution if individuals receive suspicious communications. The breach underscores the importance of robust data security measures and the need for vigilance in safeguarding personal information. The Kobe Steel Health Insurance Association extends its deepest apologies for the inconvenience and concern caused by this incident and is committed to improving its data protection practices.
Reference:
