In February, the Ministry of Economy, Trade and Industry announced that up to 460,000 credit card information could have been leaked due to a cyber attack, and the Ministry of Economy, Trade and Industry had insufficient security measures. We issued an improvement order to prevent recurrence.
It is unusual for a company that has been victims of a cyberattack to be ordered to improve because of "insufficient security measures."
"Metap Payment," which provides a service for electronic payments such as credit cards, was illegally accessed by the company's system, and information such as credit card numbers and security codes, up to 460,395, were leaked. We announced in February that there was a risk.
In response to this, the Ministry of Economy, Trade and Industry said that the company had not implemented basic security measures such as detection of unauthorized access and preventive measures, and requested the formulation of recurrence prevention measures and clarification of management responsibilities, and sold them on an installment basis. We issued a business improvement order based on the law on June 30th.
It is unusual for a company that has been victims of a cyberattack to be ordered to improve because of "insufficient security measures."
According to the Ministry of Economy, Trade and Industry, the company tampered with the result and reported the credit card information to the examination body, even though the internal investigation showed that the security of the internal system was "highly vulnerable". It means that it was certified as meeting the international security standards required by the company that handles it.
"We will take administrative sanctions seriously and seriously and take prompt measures for improvement," commented Metap Payments.