Cyber Incident Victim: Bandai Namco Holdings Inc.

On July 3, 2022, Bandai Namco Holdings Inc. detected unauthorized third-party access to internal systems at multiple group companies across Asia, excluding Japan. The breach targeted servers and computers containing customer information related to the company's Asian toy and hobby business operations outside Japan. Upon discovery, the company implemented immediate containment measures, including blocking access to affected servers to prevent further compromise. Bandai Namco initiated forensic investigations to determine the scope of potential data exposure, whether any customer information was exfiltrated, and the root cause of the intrusion. The incident did not impact the company's domestic Japanese operations, with the breach confined to specific regional subsidiaries.

Bandai Namco engaged external security partners to assist with the ongoing investigation while maintaining business continuity measures across unaffected systems. The company acknowledged the possibility of customer data compromise but did not disclose specific data types, record volumes, or confirmed exfiltration at the time of reporting. No ransomware deployment or operational disruption beyond access restrictions was reported. Bandai Namco publicly apologized for causing concern to stakeholders and committed to providing updates as the investigation progressed. The organization pledged to strengthen group-wide cybersecurity defenses through external partnerships and internal policy enhancements to prevent recurrence.