NEWS & TOPICS

News & Topics

2026.06.30 NEW

[4th report] Unauthorized access to our network

Thank you very much for your continued support.
The investigation by an external security agency has been completed regarding the unauthorized access to our network, which we have reported recently. The following is a report on the facts confirmed by the investigation, the scope of impact, the Company's response and measures to prevent recurrence.

1. Overview of this matter
On April 24, 2026, we checked log-in records that were not normally expected in our internal network, so we asked external security agencies to investigate, and implemented initial response such as establishing a response headquarters, reporting to related organizations, restricting access from outside, blocking accounts, and strengthening monitoring.
Subsequent investigations revealed that this case was unauthorized access to the internal network by a third party, and when we proceeded to identify the scope of impact, traces of investigation, search, confirmation, and trial of the internal environment were confirmed on some servers.
There has been no direct behavior of file encryption, system inability, ransom demand, intimidation, data collection or mass data transfer seen in typical ransomware attacks.

2. Possibility of Information Disclosure
As a result of the investigation, no concrete evidence or traces indicating that the information was taken out to the outside were confirmed, and even in the investigation of external threat information, information related to this matter was published, distributed, or sold on external sites at this time. No facts have been confirmed.
Based on these results, we have received a report from an external security agency that has not confirmed any evidence to confirm that a substantial information leak occurred.
However, since unauthorized access by third parties has been confirmed, we have judged that we cannot completely deny the possibility of information leakage, and since it is difficult to completely eliminate the possibility of information disclosure etc. in the future, we will continue to monitor it regularly and report it promptly if there is a possibility of information leakage.

3. Impact on customer service
Regarding systems related to customer services such as MallPro® and +CMS, there has been no trace of unauthorized access attempts to the environment related to customer service from servers that have been confirmed to intrusion in this survey. In addition, no trace of suspicious login has been confirmed in our investigation.
Based on this matter, we will continue to monitor systems and terminals related to customer services, and will continue to work to confirm safety and prevent recurrence.

4. Measures to prevent recurrence
We take this matter seriously and are promoting the following measures to prevent recurrence.
・Disabling and blocking accounts that may be related to unauthorized access
・Reset Credentials and Enhance Access Management
・Introduction of multi-factor authentication
・Strengthen monitoring systems for terminals and systems
・Enhance log monitoring of systems and terminals related to customer service
・Reviewing external connection environments and enhancing security
・Continuous security education for all employees

Going forward, we will work to strengthen our information security measures and restore trust throughout the company.

We sincerely apologize for any inconvenience and concern for our customers and related parties.

East Inc.
Representative Director  Hideaki Nagashima

Go to page top

This page is translated using machine translation. Please note that the content may not be 100% accurate.