A Japanese Manufacturer Faces Production Slowdown After Cyber-Attack

Introduction

A Japanese manufacturer has experienced a significant decrease in output following a crypto-mining cyber-attack, which targeted their systems in late February. Hoya, a leading optical equipment maker operating in over 30 countries, was hit by malware designed to steal user log-ins as part of a suspected crypto-jacking campaign.

Details of the Attack

Approximately 100 machines at Hoya were infected with malware, causing a slowdown in key servers and impacting production and back-office processes. The attack particularly affected a manufacturing plant in Thailand, where the lens production line was partially shut down for three days. This led to a decrease in output to around 40% of normal levels at two facilities. Additionally, the malware disrupted the distribution of invoices at the firm’s offices in Japan.

Response and Impact

Although the second stage of the infection was reportedly repelled, Hoya has not officially commented on the situation. The company has stated that the attack will have “little” impact on its overall business, despite not fully recovering from the production delay by the end of March.

Implications of Crypto-Mining Attacks

This incident highlights the potential for crypto-mining attacks to disrupt operations, despite their covert nature. In November last year, a Canadian university also fell victim to a similar campaign, forcing the institution to shut down its entire network due to an automated coin mining attack.

As organizations continue to face cyber threats, it is essential for them to prioritize cybersecurity measures to protect their systems and data from malicious actors.