Tuesday, May 13, 2025
HomeCyber Security NewsU.S. Subsidiary of a Japanese water Treatment Company Hit By Ransomware Attack

U.S. Subsidiary of a Japanese water Treatment Company Hit By Ransomware Attack

Published on

SIEM as a Service

Follow Us on Google News

Kurita America Inc. (KAI), the North American subsidiary of Tokyo-based Kurita Water Industries Ltd., has confirmed it was the victim of a ransomware attack that compromised multiple servers and potentially leaked sensitive data.

The attack was detected on Friday, November 29, 2024, and has raised concerns worldwide among customers and business partners.

Incident Overview

KAI’s security monitoring system flagged the unauthorized access at approximately 3 p.m. on November 29. Upon investigation, the presence of ransomware, which had encrypted data on multiple servers, was confirmed.

- Advertisement - Google News

The company promptly disconnected the compromised servers from the network to mitigate further damage.

Leveraging 2024 MITRE ATT&CK Results for SME & MSP Cybersecurity Leaders – Attend Free Webinar

In a statement issued by Kurita Water Industries Ltd., headquartered in Nakano-ku, Tokyo, the company expressed deep regret over the incident, apologizing for the concern and inconvenience caused to its stakeholders.

The company acknowledged that some data stored on KAI’s servers might have been exposed to third parties.

This includes sensitive information belonging to customers, business partners, and employees. Details on the extent of the breach or the specific nature of the data affected remain under investigation.

Thanks to quick containment efforts and external cybersecurity expertise, KAI has successfully restored its main servers.

Business operations have reportedly not been disrupted. Moving forward, an in-depth investigation into the incident’s root cause will continue, with further emphasis on enhancing security measures across the entire Kurita Group.

Kurita Water Industries reaffirmed its commitment to minimizing the impact on affected parties and strengthening its global information security infrastructure to prevent future incidents.

This incident underscores the growing vulnerability of critical industries to ransomware attacks. Companies in essential sectors, such as water treatment, increasingly face cyber threats that not only disrupt operations but also risk sensitive data exposure.

Experts urge such organizations to adopt stronger cybersecurity frameworks to counter these evolving dangers.

Investigate Real-World Malicious Links,Malware & Phishing Attacks With ANY.RUN - Try for Free



Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

Lumma Stealer Upgraded with PowerShell Tools and Advanced Evasion Techniques

Sophos Managed Detection and Response (MDR) in September 2024, the notorious Lumma Stealer malware...

New Noodlophile Malware Spreads Through Fake AI Video Generation Platforms

Cybercriminals have unleashed a new malware campaign using fake AI video generation platforms as...

Kimsuky Hacker Group Deploys New Phishing Techniques and Malware Campaigns

The North Korean state-sponsored Advanced Persistent Threat (APT) group Kimsuky, also known as “Black...

APT37 Hackers Use Weaponized LNK Files and Dropbox for Command-and-Control Operations

The North Korean state-sponsored hacking group APT37, also known as ScarCruft, launched a spear...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Lumma Stealer Upgraded with PowerShell Tools and Advanced Evasion Techniques

Sophos Managed Detection and Response (MDR) in September 2024, the notorious Lumma Stealer malware...

New Noodlophile Malware Spreads Through Fake AI Video Generation Platforms

Cybercriminals have unleashed a new malware campaign using fake AI video generation platforms as...

Kimsuky Hacker Group Deploys New Phishing Techniques and Malware Campaigns

The North Korean state-sponsored Advanced Persistent Threat (APT) group Kimsuky, also known as “Black...