Japanese telecoms giant KDDI says 12 million emails exposed in major cyberattack


  • KDDI confirms unauthorized access affecting six ISPs, with up to 14.22 million email addresses and passwords exposed
  • Some passwords were not encrypted; with estimates citing 12.2 million emails and 7.6 million passwords compromised
  • The company called for timely password updates, coordinated countermeasures with ISPs and committed to preventing recurrence.

KDDI, one of Japan’s largest telecommunications providers, has confirmed that it was recently hacked and lost millions of unencrypted emails and passwords belonging to its customers’ customers.

In a data breach notice, shared last month, the company said it confirmed “unauthorized access” on June 17, 2026.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top