NTT Communications, one of Japan’s leading telecommunications companies, announced that approximately 18,000 of its corporate customers’ data was compromised in a cyber attack that occurred in February 2025.

The company stated that the attack was carried out through an internal system known as the “Service Order Information Distribution System,” which is used to manage service activations and modifications.

ACCESS TO SYSTEM RESTRICTED
NTT Communications detected the attack on February 5, 2025, and immediately restricted system access taking initial measures. However, additional examinations conducted on February 15 revealed that a second device within the company’s internal network was also compromised by the attackers. This device was swiftly removed from the network. The company has not shared any information about the group behind the attack or the exact nature of the breach.

MOBILE CONTRACTS UNAFFECTED
Among the data seized in the attack are customer names, contract numbers, phone numbers, email addresses, physical addresses, and service usage information. However, it was announced that individual consumer data or NTT Docomo’s corporate mobile contracts were not impacted by this breach. The company stated that there is no evidence to suggest that the stolen data has been misused.

OPERATING IN OVER 70 COUNTRIES
NTT Communications has an extensive global service network. With physical locations in over seventy countries, the company is a significant player in information and communication technology solutions, as well as global cloud services, data centers, VPN services, and security.

ADDITIONAL MEASURES TAKEN
Following this incident, NTT Communications announced that it has taken additional measures to strengthen its security systems and enhance monitoring systems. Additionally, they assured customers that they would be informed directly through communication methods and that no notifications would be made via email. This is seen as a precaution against potential phishing attacks.

INCREASED CYBER THREATS
This event underscores how the telecommunications sector has become a target for cybercriminals and state-sponsored hacking groups. Telecom companies not only attract attackers due to customer data but also due to critical infrastructure services. NTT Communications is planning to implement a comprehensive security strategy to regain its customers’ trust in the aftermath of this incident.