GMO Payment Gateway submits report with Japan’s Ministry of Economy, Trade and Industry over data leakage

Maria Nikolova

More than a month after the incident, the investigation continues with GMO Payment Gateway having filed a report into the case with the Japan’s Ministry of Economy, Trade and Industry.

More than a month has passed since Japanese provider of payment processing services GMO Payment Gateway Inc (TYO:3769) confirmed that personal data leakage that had affected the websites of two of its clients – the Tokyo Metropolitan Government and the Japan Housing Finance Agency.

The issue was so severe that it has sparked concerns of such government institutions like Japan’s Ministry of Economy, Trade and Industry (METI) which has referred to the Act on the Protection of Personal Information to demand a special report from GMO PG into the data leakage.

GMO Payment Gateway filed the report on Monday, April 17, 2017. The METI requests that the report contains details on the handling and management of personal information, on the progress of investigations, as well as on measures implemented to prevent the recurrence of the harmful situation.

At the end of last week, GMO Payment Gateway updated the numbers for the data leaked, referring to “doubling of information”.

According to the initial assessments, the number of “units of information” leaked through the Tokyo Metropolitan Government website was 676,290, including 614,629 email addresses, as well as 61,661 credit card numbers and credit card expiration dates. The number of “units” of credit card information reportedly leaked from the Japan Housing Finance Agency was 43,540, including credit card numbers, credit card expiration dates, security codes, credit card payment registration dates, addresses, email addresses, names, phone numbers, as well as dates of birth and payment joining dates. The revised data lowers the numbers nearly two times.

Shortly after GMO Payment Gateway confirmed the data leak, it announced the establishment of a “Recurrence prevention committee”, which has 11 members, including several external experts from companies like TMI Associates and Payment Card Forensics, Inc. The latter investigates security incidents and offers consultation and assessment to prevent data breaches.

Early in April, Payment Card Forensics published their report into the leakage, confirming findings of GMO Payment Gateway’s internal investigation into the matter. The external experts said unauthorized access was not confirmed for any other website apart from the two websites initially reported to have been affected.

Read this next

Digital Assets

Paxos opens R&D center in Israel to focus on transaction signing and crypto custody security

“Paxos is looking to expand its team in Israel in 2023 and beyond, giving engineers the opportunity to work on cutting-edge financial products and shape the future of the global economy.”

Executive Moves

Stash appoints Liza Landsman as CEO to further grow investing app

Stash is an investing and banking app with over 2 million active subscribers. Its subscription plans start at just $3 a month, and offer a range of products including investing, banking, education, and advice.

Institutional FX

Invast Global ramps up its offering with 10 soft commodity CFDs

Sydney-based prime-of-prime provider Invast Global has expanded its offering with the addition of ten soft commodity CFDs, which increases their index and commodity CFD offering to 35 instruments.

Retail FX

FF Simple and Smart Trades says Goodbye to CySEC authorization

The Cyprus Securities and Exchange Commission (CySEC) confirmed that it has wholly withdrawn the Cyprus Investment Firm (CIF) licenses of FF Simple and Smart Trades Investment Services Ltd.

Crypto Insider

Shining the Light in Crypto’s Dark Places

Something changed in regulators’ minds after the November crash of the FTX crypto exchange.

Executive Moves

Financial Commission Adds Sam Low to Dispute Resolution Committee

The Financial Commission (FinaCom PLC), a dispute resolution service that caters to the financial services industry, has appointed Sam Low as the newest member of its Dispute Resolution Committee (DRC).

Digital Assets, Uncategorized

De-facto owner of Bithumb exchange arrested in South Korea

South Korean prosecutors have arrested Kang Jong-Hyun, the anonymous chairman and owner of the country’s largest cryptocurrency exchange, Bithumb, on charges of embezzlement and stock manipulation.

Retail FX

Interactive Brokers volumes snap three-month losing streak

Electronic brokerage firm Interactive Brokers LLC (NASDAQ:IBKR) said its trading volumes rose in January, an indication that investor confidence in the financial markets is rebounding after having been fairly mixed over the past few months.

Digital Assets

VVF invests $5 million in Everscale, a potential Layer 2 solution for Venom blockchain

“For us, this is a strategic investment aimed at the technological development of projects and teams around technologies that we focus on and actively develop. In particular, we are talking about the Venom blockchain project and its ecosystem, which is planned to be launched soon and for which Everscale is a potential Layer 2 solution.”