TOKYO – The organizing committee of the Tokyo Olympics is the latest to be hit by a data breach through unauthorized access to an information-sharing tool developed by Fujitsu Ltd., sources familiar with the matter said Friday.
Personal information was leaked from a total of about 170 people who are involved in security management and have participated in a drill hosted by Japan’s national cybersecurity center to brace for potential cyberattacks during the major sporting event, the sources said.
Data breaches have already been found in government agencies including the National Center of Incident Readiness and Strategy for Cybersecurity and the Foreign Ministry, Fujitsu and the affected ministries said in late May.
With around 50 days to go before the Olympics open in the Japanese capital, the organizers and government continue to ramp up efforts to prevent cyberattacks from disrupting the games.
The center declined to comment on whether the leaked information was related to the games and said it has not confirmed any disruptions in the operations of any of the organizations targeted.
The leaked information included names, business titles and affiliations of the participants belonging to about 90 organizations, including the organizing body of the Olympics and Paralympics, ministries, local governments hosting venues such as Tokyo and Fukushima Prefecture, and sponsors of the games.
Takahito Tokita, the president of Fujitsu which is also contracted to oversee clients’ computer systems, apologized the same day to Olympic minister Tamayo Marukawa for the data breach.
Fujitsu said in late May that the data of several of its corporate clients had been compromised due to unauthorized access to the tool, which is used to share information between internal and external parties of a company.
The leak was likely due to a malware infection, the sources said, but the company is still investigating the cause and the extent of the impact.
The government agencies including the foreign and transport ministries have said at least 76,000 email addresses of government officials and external parties, such as members of panels, as well as study materials on creating a digital government, were breached.