Cyber Incident Victim: Tamash

On or around October 14, 2022, affiliates of the LockBit 3.0 ransomware-as-a-service operation breached Japanese technology firm Oomiya, which specializes in microelectronics design, manufacturing, and facility system equipment. The attackers exfiltrated company data and issued a ransom demand, threatening to publish stolen information by October 20, 2022, if payment was not received. Oomiya’s operations span chemical and industrial product manufacturing, electronic materials design, pharmaceutical development, and factory manufacturing systems. LockBit affiliates publicly claimed responsibility for the attack but did not initially provide evidence of the stolen data. The incident occurred during a period of heightened LockBit 3.0 activity, with DarkFeed reporting hundreds of organizations targeted by the group’s affiliates globally. No details regarding initial attack vectors, internal detection methods, or containment procedures were disclosed in available sources.

The compromise raised significant supply chain concerns due to Oomiya’s role as a supplier to major international organizations across manufacturing, semiconductor, automotive, communications, and healthcare sectors. Potential data exposure could impact downstream clients through intellectual property theft or operational disruption. LockBit’s typical tactics involve double extortion through data encryption and leakage threats, though the group had not published Oomiya-related data samples at the time of reporting. No information regarding ransom negotiations, payment status, or incident response coordination with law enforcement or third-party cybersecurity firms was publicly available. The absence of published data samples left the validity and scope of the exfiltration claims unverified as of October 17, 2022.