Cyber Incident Victim: Hoya Corporation

On March 28, 2024, Hoya Corporation detected an IT system incident affecting its headquarters and multiple business divisions. The Tokyo-based lens manufacturer initiated an immediate investigation, collaborating with internal teams across its operational sites and engaging external cybersecurity experts to assess the breach. While the company’s initial public statement on March 30 did not specify the attack methodology or identify responsible threat actors, it confirmed disruptions to core operational systems. The incident forced Hoya to suspend manufacturing activities across affected divisions, indicating significant compromise of production infrastructure. No details were provided regarding data exfiltration, ransomware deployment, or specific compromised systems beyond the broad reference to "IT systems." Company representatives established a dedicated media contact line (+81-3-6911-4824) but declined to disclose further technical particulars during the initial response phase.

The cyberattack’s operational impact escalated rapidly, culminating in a full production halt confirmed by Reuters reporting on March 30. This disruption affected lens manufacturing processes, though the company did not specify whether optical, medical, or consumer product lines sustained differential impacts. Hoya’s crisis response prioritized containment through system isolation and forensic analysis, with recovery timelines remaining undisclosed. External cybersecurity partners worked alongside internal IT teams to map the intrusion’s scope while maintaining business continuity protocols for unaffected divisions. The incident marked a notable operational disruption for the multinational corporation, which maintains manufacturing and R&D facilities across Asia, Europe, and North America. Restoration efforts continued without public disclosure of interim mitigation measures or communication regarding supply chain impacts.