Key Takeaways:
- KDDI Data Breach confirms unauthorized access to email systems for five Japanese ISPs.
- The cyberattack exposed over 12 million email addresses and 7 million passwords.
- The company deploys AI-driven security tools to prevent further unauthorized system access.
KDDI Reports Major Data Breach In Email Platform
Japanese telecommunications giant KDDI Corp. announced that a KDDI Data Breach confirms unauthorized involvement in its email system for internet service providers resulted in the unauthorized exposure of over 12 million user email addresses.
The company disclosed that approximately 12.23 million email addresses and 7.61 million passwords were compromised following a breach of a third-party software vulnerability. KDDI confirmed the intrusion occurred on June 17, 2026, though the underlying security flaw was not publicly recognized by the vendor at that time.
“Regrettably, this incident has had a major impact on users,” Japanese Internal Affairs Minister Yoshimasa Hayashi said at a news conference Tuesday. The ministry has since requested a detailed report on the incident and is monitoring the company’s remediation efforts.
Third-Party Vulnerability Exploited In Cyberattack
According to technical reports submitted to the government, the attackers exploited a zero-day vulnerability in third-party software integrated into KDDI’s email platform. While the firm initially estimated that up to 14.22 million accounts could be affected, subsequent forensic analysis reduced the confirmed number of compromised credentials.
KDDI stated that it patched the affected systems and implemented enhanced defensive measures shortly after detecting the breach. The company is now collaborating with five impacted internet service providers, including JCOM, Biglobe, and Nifty, to enforce mandatory password resets for all affected customers.
The telco giant confirmed that its core services, including ‘au mail’ and other proprietary platforms, remain unaffected because they operate on separate infrastructure. KDDI officials noted that many regular users have already completed password changes, while those less active are being guided through the security update process.
Company Deploys AI To Bolster System Defenses
As part of its long-term recurrence prevention strategy, following the KDDI Data Breach, KDDI plans to utilize artificial intelligence to analyze software design specifications and programs.
This initiative aims to identify potential vulnerabilities before they can be exploited by malicious actors in future cyberattacks.
The company has also deployed advanced Endpoint Detection and Response software across its servers to monitor for fraudulent access attempts. Industry analysts suggest that while these measures strengthen the firm’s posture, the large-scale leak continues to raise significant concerns regarding data privacy and the security of infrastructure shared across multiple providers.
KDDI has notified the Personal Information Protection Commission and other regulatory bodies, pledging full cooperation as the investigation continues. While no reports of secondary damage have been confirmed, the company urges users affected by the KDDI Data Breach to remain vigilant and avoid using identical passwords across different online services.




