Cyber Incident Victim: 株式会社トーモク
Date:
May 2025
Location:
Japan
Summary
Tomoku disclosed that a ransomware attack encrypted several of its group servers, leading to a disruption of its online ordering system while other receipt channels such as fax, email and the corporate website continued to function normally. The company stated that investigations are ongoing to determine the full scope of the impact and that it is working with external specialists and law enforcement to restore the affected systems and improve protections.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On May 3, 2025, a ransomware attack encrypted several servers within the Tomoku group. The company issued a public notice about the incident on May 8, 2025. According to the notice, the attack resulted in the disruption of the online ordering system that interfaces directly with the company's internal systems. At the time of the notice, the full scope of additional damage was still under investigation.
The notice specified that the online ordering function linked to the company's own system was the affected service. In contrast, web‑based ordering, fax and email based ordering, and the corporate homepage remained accessible and continued to operate normally. Production activities were reported to be proceeding without interruption despite the server encryption. The company indicated that recovery would require additional time but did not provide a specific timeline.
To address the incident, Tomoku stated that it was collaborating with external cybersecurity specialists and law enforcement authorities. These partners were assisting with the investigation, implementing system protection measures, and carrying out recovery work. The company committed to communicating any newly confirmed facts through its website and other channels as they became available.