Japan's KDDI confirms leak of 12.2m email addresses, 7.6m passwords
( July 7, 2026, 06:19 GMT | Official Statement) -- MLex Summary: Major Japanese telecom company KDDI has updated its June 23 disclosure of unauthorized access to its email system for internet service providers with a statement on Monday confirming the leak of about 12.2 million email addresses and 7.6 million passwords after a vulnerability in third-party software was exploited. The company said it submitted a report on Monday to the Ministry of Internal Affairs and Communications, as required under the Telecommunications Business Act, implemented technical measures and was working with ISP operators to require password changes for affected customers' email accounts.Statement is attached (in Japanese)....
Prepare for tomorrow’s regulatory change, today
MLex identifies risk to business wherever it emerges, with specialist reporters across the globe providing exclusive news and deep-dive analysis on the proposals, probes, enforcement actions and rulings that matter to your organization and clients, now and in the longer term.
Know what others in the room don’t, with features including:
- Daily newsletters for Antitrust, M&A, Trade, Data Privacy & Security, Technology, AI and more
- Custom alerts on specific filters including geographies, industries, topics and companies to suit your practice needs
- Predictive analysis from expert journalists across North America, the UK and Europe, Latin America and Asia-Pacific
- Curated case files bringing together news, analysis and source documents in a single timeline
Experience MLex today with a 14-day free trial.