Japanese telecommunications provider KDDI has confirmed a large-scale data breach impacting more than 12 million customers after attackers compromised a shared email platform used by five internet service providers (ISPs). The investigation revealed that cybercriminals exploited a previously unknown (zero-day) vulnerability in third-party software, exposing millions of email addresses and passwords. KDDI has since contained the intrusion, initiated mandatory password resets, and strengthened security controls. The attack targeted KDDI's email platform, which provides email account management, webmail, and storage services for multiple Japanese ISPs, including STNet, JCOM, Chubu Telecommunications, NIFTY Corporation, and BIGLOBE. According to KDDI, the attackers gained unauthorized access on May 16, 2026, by exploiting a zero-day vulnerability in third-party software integrated into the platform. At the time of exploitation, the software vendor had not identified or disclosed the vulnerability. Following detection on June 17, KDDI immediately blocked the attackers, patched the vulnerable component, and deployed additional defensive measures, including Endpoint Detection and Response (EDR) solutions. A forensic investigation confirmed that approximately 12,233,087 email addresses and 7,616,173 passwords were exposed. While some passwords were stored in hashed or encrypted form, KDDI did not disclose how many credentials were protected versus stored in plaintext. The company is coordinating with affected ISPs to enforce password resets and has reported the incident to Japan's regulatory authorities.
PromptSpy is a newly discovered Android spyware that introduces a significant change in the way mobile malware operates. Unlike traditional spyware that depends on pre-programmed i...
Microsoft has disclosed a critical remote code execution (RCE) vulnerability affecting the Chromium-based Microsoft Edge browser. The flaw, tracked as CVE-2026-45495, could allow a...
Ubiquiti has released emergency security updates to fix multiple critical vulnerabilities affecting its UniFi product ecosystem, including UniFi Connect, UniFi Talk, UniFi Access, ...