GMO Payment Gateway submits report with Japan’s Ministry of Economy, Trade and Industry over data leakage

Maria Nikolova

More than a month after the incident, the investigation continues with GMO Payment Gateway having filed a report into the case with the Japan’s Ministry of Economy, Trade and Industry.

More than a month has passed since Japanese provider of payment processing services GMO Payment Gateway Inc (TYO:3769) confirmed that personal data leakage that had affected the websites of two of its clients – the Tokyo Metropolitan Government and the Japan Housing Finance Agency.

The issue was so severe that it has sparked concerns of such government institutions like Japan’s Ministry of Economy, Trade and Industry (METI) which has referred to the Act on the Protection of Personal Information to demand a special report from GMO PG into the data leakage.

GMO Payment Gateway filed the report on Monday, April 17, 2017. The METI requests that the report contains details on the handling and management of personal information, on the progress of investigations, as well as on measures implemented to prevent the recurrence of the harmful situation.

At the end of last week, GMO Payment Gateway updated the numbers for the data leaked, referring to “doubling of information”.

According to the initial assessments, the number of “units of information” leaked through the Tokyo Metropolitan Government website was 676,290, including 614,629 email addresses, as well as 61,661 credit card numbers and credit card expiration dates. The number of “units” of credit card information reportedly leaked from the Japan Housing Finance Agency was 43,540, including credit card numbers, credit card expiration dates, security codes, credit card payment registration dates, addresses, email addresses, names, phone numbers, as well as dates of birth and payment joining dates. The revised data lowers the numbers nearly two times.

Shortly after GMO Payment Gateway confirmed the data leak, it announced the establishment of a “Recurrence prevention committee”, which has 11 members, including several external experts from companies like TMI Associates and Payment Card Forensics, Inc. The latter investigates security incidents and offers consultation and assessment to prevent data breaches.

Early in April, Payment Card Forensics published their report into the leakage, confirming findings of GMO Payment Gateway’s internal investigation into the matter. The external experts said unauthorized access was not confirmed for any other website apart from the two websites initially reported to have been affected.

Read this next

Digital Assets

AAX ranked world’s second largest spot exchange, only behind Binance

Crypto trading volumes experienced their first surge in activity since March as the majority of digital assets began their recovery from the recent grim price action, according to a new report by Cryptocompare.

Digital Assets

Bitpay teams up with Cardlytics to provide 15% cashback rewards

Crypto payment service provider Bitpay announced a partnership with Cardlytics Inc (NASDAQ:CDLX), which it says will offer more rewards for BitPay cardholders on its platform.

Digital Assets

BlackRock digs further into crypto with spot bitcoin private trust

BlackRock, the world’s largest asset manager with almost $8 trillion in AUM, has launched a spot bitcoin private trust for institutional clients in the United States.

Digital Assets

SEC fines Bloom Protocol, orders refund to BLT token purchasers

Blockchain startup Bloom, which raised $30 million in funds via an initial coin offering (ICO), has agreed to return the money to token purchasers and pay a $300,000 fine, the SEC announced.

Institutional FX

FX volume takes step back at Singapore Exchange in July

The Singapore Exchange (SGX), the country’s paramount exchange operator, has released its monthly volumes across its FX, derivatives and commodities segments for July 2022.

Market News

The Week Ahead: 12 August from David Madden, Market Analyst at Equiti Group

There was a spike in volatility last week when the US CPI report ticked down to 8.5% from 9.1%, missing the forecast of 8.7%. The announcement led to chatter the Fed might not carry out a 0.75% interest rate hike in September.

Digital Assets

Pomelo Pay adds crypto payments capabilities from TripleA

According to a June survey conducted by Deloitte, nearly 75% of retailers plan to accept either cryptocurrency or stablecoin payments within the next two years.

Executive Moves

Talos appoints “boss, mentor, and friend” Neal Pawar as strategic advisor

“Foundational technologies are needed for institutions to fully embrace this potential, however, and in my opinion Talos’s platform is steadily becoming the de facto industry standard for digital asset trading.”


Avelacom enhances Middle East connectivity amid new market trends

Avelacom found that smaller markets in the region were not sufficiently covered by third-party vendors.