← Back to news

KDDI Breach Affects Six Japanese ISPs, Exposes 14.2 Email Credentials

Infosecurity Magazine24/06/2026, 12:45
Read full article →

Summary

AI-Generated

Key Points:

  • KDDI has confirmed a breach affecting six Japanese ISPs, exposing approximately 14.2 million customer email addresses and passwords.
  • The breach resulted from unauthorized access to an email system, impacting customers of multiple ISPs including STNet, KDDI Web Communications, JCOM, Chubu Telecommunications, Nifty Corporation, and Biglobe.
  • KDDI recommends that all affected customers change their passwords and has implemented technical countermeasures to mitigate further risks.

Technical Details: The breach was attributed to a vulnerability in third-party software utilized within the email system. KDDI detected the intrusion on June 17 and has since modified the system to prevent additional damage.

MITRE ATT&CK Techniques: None mentioned

IOCs Mentioned: None mentioned

Join the discussion — sign up to comment, upvote, and save articles.

Discussion

or to comment
Loading...

Loading comments...

Join 5,000+ security professionals

Get access to curated threat intel, upvote articles, join discussions, and build your karma in the SOC community.