- Tenga cyberattack via phishing exposed customer names, emails and order/service details
- The attacker accessed the inbox, exfiltrated data, and sent spam to employees and customers.
- The company reset credentials, enabled MFA, and urged customers to update passwords and remain vigilant.
Japanese sex toy maker Tenga reportedly suffered a cyberattack and lost some of its customer data.
TechCrunch claims to have seen a data breach notification letter that Tenga allegedly sent to its employees, stating how someone attacked a Tenga employee with phishing and managed to gain access to their inbox.
From there, they were able to extract customer names, email addresses, and historical email correspondence “which may include order details or customer service inquiries.”
MFA Implementation
While information about the nature of the data is vague, stealing order details and customer service inquiries could be sufficient for sophisticated and personalized phishing attacks, which can lead to account compromises, identity theft, phishing, and more.
The attacker also used inbox access to send spam messages to some contacts (both employees and customers).
We do not know how many people are affected, nor if anyone has already claimed responsibility for this attack. However, Tenga urged all customers to, out of an abundance of caution, update passwords on most accounts and be wary of incoming email messages, especially those claiming to come from Tenga.
In response to the attack, the company reset compromised user account credentials and enabled multi-factor authentication (MFA) on all of its systems. It was not clear whether MFA was implemented before the attack in any capacity, and the company did not respond to questions about why MFA was not universally present beforehand.
Tenga is a Tokyo-based manufacturer of sexual wellness products founded in 2005. The privately held company employs approximately 50 to 200 people across its global operations and serves markets in Asia, Europe, the US and beyond, with products available in thousands of retail outlets and online channels.
The company has shipped more than one hundred million units globally and reported annual sales close to ¥10 billion ($66 – 67 million) in recent years, with almost half of its revenue coming from overseas markets. Its portfolio also includes brands focused on women and sexual health education.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
