This IPA report analyzes the organizational security support situation through Q2 2025 Cyber Security Consultation Service data.
Total consultations in Q2 2025 numbered 244 cases. Breakdown by type: Incident Response 55 cases, Routine Security Measures 27 cases, Support Scams 52 cases, and Other 110 cases.
Incident response breakdown by attack type: Malware Infection 12 cases, Unauthorized Access 11 cases, Ransomware Infection 7 cases, Impersonation Emails 6 cases, Website Defacement 6 cases, and DDoS Attacks 2 cases. Specific cases included potential data leakage from ransomware attacks at overseas factories and consultations about implementing information security measures.
Key prevention measures recommended by IPA include establishing incident response procedures, using multi-factor authentication, avoiding suspicious attachments/links, minimizing server access rights, implementing proper backup procedures, and conducting regular security training.
The report emphasizes the importance of organizations implementing proactive and reactive cybersecurity strategies, demonstrating that IPA's consultation service plays a vital role in supporting organizations facing cyber attack threats.