Japan's largest taxi operator shuts systems after cyberattack
Nihon Kotsu, Japan's largest taxi operator, suffered a cyberattack that compromised its internal systems, forcing a shutdown of part of its infrastructure. The attack disrupted critical services including taxi dispatch, car hire, web booking, reservation management, and telephone dispatch, with some services remaining offline. The company confirmed unauthorized external access via malware infection and implemented emergency measures by disconnecting affected systems. No data leak has been confirmed yet, but the investigation is ongoing with external cybersecurity experts engaged. Customers are advised to be cautious of suspicious communications purportedly from the company. No ransomware or extortion group has claimed responsibility so far.
AI Analysis
Technical Summary
Nihon Kotsu experienced a cyberattack involving unauthorized external access through malware infection, leading to the shutdown of key operational systems such as taxi dispatch and booking services. The company took immediate containment actions by disconnecting systems to prevent further damage. The incident has caused significant operational disruption, including suspension of specific services like the labor taxi service in several Japanese cities. The investigation is ongoing, with no confirmed data breach at this time. External cybersecurity experts are assisting in recovery and forensic analysis. Customers are warned against phishing attempts related to the incident. No known exploit or ransomware group has been linked to the attack.
Potential Impact
The cyberattack caused operational disruption to Nihon Kotsu's taxi dispatch, booking, and reservation systems, affecting service availability and customer access. Specific services, including labor taxi bookings in multiple cities, were suspended. The incident may impact customer trust and business revenue. There is no confirmed data breach or leak at this stage, but the possibility is under investigation. The company’s infrastructure remains partially offline, indicating ongoing recovery efforts.
Mitigation Recommendations
Nihon Kotsu has implemented emergency containment by disconnecting affected systems to prevent further damage. External cybersecurity experts are engaged to investigate and assist with system recovery. Customers are advised to avoid opening suspicious attachments or clicking links in unsolicited communications claiming to be from the company. No official patch or fix is applicable as this is an incident response to a targeted cyberattack. Continued monitoring and updates from the company should be followed for further guidance.
Japan's largest taxi operator shuts systems after cyberattack
Description
Nihon Kotsu, Japan's largest taxi operator, suffered a cyberattack that compromised its internal systems, forcing a shutdown of part of its infrastructure. The attack disrupted critical services including taxi dispatch, car hire, web booking, reservation management, and telephone dispatch, with some services remaining offline. The company confirmed unauthorized external access via malware infection and implemented emergency measures by disconnecting affected systems. No data leak has been confirmed yet, but the investigation is ongoing with external cybersecurity experts engaged. Customers are advised to be cautious of suspicious communications purportedly from the company. No ransomware or extortion group has claimed responsibility so far.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Nihon Kotsu experienced a cyberattack involving unauthorized external access through malware infection, leading to the shutdown of key operational systems such as taxi dispatch and booking services. The company took immediate containment actions by disconnecting systems to prevent further damage. The incident has caused significant operational disruption, including suspension of specific services like the labor taxi service in several Japanese cities. The investigation is ongoing, with no confirmed data breach at this time. External cybersecurity experts are assisting in recovery and forensic analysis. Customers are warned against phishing attempts related to the incident. No known exploit or ransomware group has been linked to the attack.
Potential Impact
The cyberattack caused operational disruption to Nihon Kotsu's taxi dispatch, booking, and reservation systems, affecting service availability and customer access. Specific services, including labor taxi bookings in multiple cities, were suspended. The incident may impact customer trust and business revenue. There is no confirmed data breach or leak at this stage, but the possibility is under investigation. The company’s infrastructure remains partially offline, indicating ongoing recovery efforts.
Mitigation Recommendations
Nihon Kotsu has implemented emergency containment by disconnecting affected systems to prevent further damage. External cybersecurity experts are engaged to investigate and assist with system recovery. Customers are advised to avoid opening suspicious attachments or clicking links in unsolicited communications claiming to be from the company. No official patch or fix is applicable as this is an incident response to a targeted cyberattack. Continued monitoring and updates from the company should be followed for further guidance.
Threat ID: 6a554eec68715ace43d4b8ab
Added to database: 07/13/2026, 20:47:40 UTC
Last enriched: 07/13/2026, 20:47:50 UTC
Last updated: 07/14/2026, 02:30:11 UTC
Views: 8
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.