Breaking
Live threat feed July 2, 2026 | 17:46 UTC
582 CVEs This Month
1 Actively Exploited
0 Ransomware Activity
28 Breaches YTD
Threat Investigation Portal
Investigate an IOC in the live graph workspace.
Investigate IOC
Data Breaches

Data Breach Exposes Up to 14.2 Million Email Logins Across Six Japanese ISPs

Data Breach Exposes Up to 14.2 Million Email Logins Across Six Japanese ISPs

KDDI Corporation, a major Japanese telecommunications operator, disclosed a data breach involving unauthorized access to one of its email systems. This system is utilized by KDDI and five other Japanese internet service providers, resulting in exposure of up to 14.2 million email login credentials.

What happened

KDDI Corporation revealed that threat actors gained unauthorized access to an email system that it operates and that is also used by five other internet service providers within Japan. This compromise led to the potential exposure of a vast number of email login credentials associated with these providers. The breach represents a significant compromise of user data across multiple ISPs taking advantage of a shared email platform. The incident highlights vulnerabilities within interconnected service infrastructures and the risks posed when one component becomes compromised.

Why it matters

The breach's impact extends beyond a single company, affecting multiple ISPs and a large user base, potentially exposing sensitive login credentials for up to 14.2 million email accounts. This situation underscores the challenges ISPs face in securing shared systems and the critical importance of robust access controls and monitoring. The exposure of login credentials can increase the risk of further account takeovers, phishing, and other cyber threats targeting affected users. The incident serves as a reminder for organizations to assess the security of shared services and communication platforms.

What security teams should do

Organizations operating shared or interconnected infrastructure should verify the scope of the breach and ensure that affected systems are secured against unauthorized access. A review of access controls, system logs, and potential indicators of compromise is advised. ISPs and security teams should monitor for unusual login activities and advise users to reset passwords as a precautionary measure. Communicating transparently with customers about the breach and recommended protective steps is critical to mitigate potential follow-on attacks.

Key technical details

The data breach involved unauthorized access to an email system operated by KDDI Corporation which also supports five other Japanese ISPs. The attackers were able to access login credentials of email accounts across these providers. The number of potentially compromised email logins was reported to be as high as 14.2 million. Details about the initial access vector, exploit method, or specific vulnerabilities exploited were not disclosed. The shared nature of the email system facilitated broad exposure among multiple organizations.

Affected organizations/products

The breach impacted KDDI Corporation and five additional Japanese internet service providers who utilize the compromised email platform, collectively affecting as many as 14.2 million email logins.

Source attribution

https://www.bleepingcomputer.com/news/security/data-breach-exposes-up-to-142-million-email-logins-at-six-isps/

Thirumala Rao Padilam
Written by
Thirumala Rao Padilam
error: Content is protected !!