- End cyber attacks via phishing exposed customer names, emails and order/service details
- The attacker gained access to the inbox, exfiltrated data and sent spam to employees and customers
- The company reset credentials, enabled MFA, and urged customers to update passwords and be vigilant
Japanese sex toy manufacturer Tenga has reportedly suffered a cyber attack and lost some of its customers’ data.
TechCrunch claims to have seen a data breach notification letter Tenga allegedly sent to its employees detailing how someone targeted a Tenga employee with phishing and managed to gain access to their inbox.
From there, they were able to exfiltrate customer names, email addresses and historical email correspondence “which may include order details or customer service inquiries.”
Rollout of MFA
Although information about the nature of the data is vague, the theft of order information and customer service inquiries can be enough for sophisticated, tailored phishing attacks that lead to account compromise, identity theft, wire fraud, and more.
The attacker also used inbox access to send some contacts – both employees and customers – spam messages.
We do not know how many people are affected or if anyone has already claimed responsibility for this attack. Nevertheless, Tenga encouraged all customers, out of an abundance of caution, to update passwords on most accounts and be wary of incoming e-mail messages, especially those claiming to be from Tenga.
In response to the attack, the company reset the credentials of the compromised user’s accounts and enabled multi-factor authentication (MFA) across its systems. It was left unclear whether MFA was deployed before the attack in any capacity, and the company did not answer questions as to why MFA was not universally present beforehand.
Tenga is a Tokyo-based manufacturer of sexual wellness products founded in 2005. The privately held company employs approximately 50 – 200 people across its global operations and serves markets in Asia, Europe, the United States and beyond, with products available in many thousands of retail stores and online channels.
The company has shipped well over a hundred million units globally and reported annual sales approaching around ¥10 billion ($66 – 67 million) in recent years, with nearly half of its revenue coming from overseas markets. Its portfolio also includes brands focused on women and sexual health education.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
