Publication of Information Security Incident Report | National Graduate Institute for Policy Studies (GRIPS)
Source: https://www.grips.ac.jp/en/news/20230822-0365
Archived: 2026-04-23 17:18
Publication of Information Security Incident Report | National Graduate Institute for Policy Studies (GRIPS)
Lightweight version
Language
Japanese
Site Map
Access
Library
for Student
for Alumni
Intranet
Job Openings
About GRIPS
About GRIPS
About GRIPS
President’s Desk
History
Administration and Organization
GRIPS ALLIANCE
Facts & Figures
Faculty Directory
GRIPS in the Media
Awards and Honors
Major Partner Universities and Institutions
Government-Academia-Private Sector Collaborative Projects
Presenters
Brochures
Roppongi Campus
GRIPS Fund
Access and Maps
(Japanese) 評価
(Japanese) 施設貸出
Contact Us
News & Events
News & Events
News & Announcements
Events & Symposiums
GRIPS FORUM
Seminars
Admissions / Scholarships
Admissions / Scholarships
Admissions
(Japanese) 募集要項
How to Apply
Scholarships / Tuition and Fees
Application Deadlines
Application FAQs
Pre-Arrival FAQs
GRIPS Bulletin (Academic Information)
GRIPS Bulletin (Student Life Guide)
Education
Education
Degree Programs
Information for International Students
Admissions Policy, Curriculum Policy, and Degree-Granting Policy
Master’s Programs (Programs offered in English)
Master’s Programs (Programs offered in Japanese)
Docotral Programs
Doctoral Dissertation, Summary, Defense Results, etc.
Non-degree Certificate/Diploma System
GRIPS Bulletin (Academic Information)
GRIPS Bulletin (Student Life Guide)
Academic Information
Academic Resources & Facilities
IT Support
Center for Data Science
Center for Professional Communication
Health & Fitness
Executive Training
Executive Training
Executive Training
Tailor-Made Short-Term Training
Research
Research
Research
Seminars and Research Groups
Faculty Directory
Research Fellows
Policy Research Center
The Science for RE-designing Science, Technology and Innovation Policy Center (SciREX Center)
Center for Data Science
Projects
Institutional Repository
Towards the Prevention of Unlawful Acts
Library
Alumni
Alumni
About Our Alumni
Stay Connected
Alumnus of the Month (ALMO)
GRIPS SDGs Award
Get Involved
Request for certificates
(Japanese) GRIPS国内同窓会報
FAQs
GRIPS Alumni Homecoming
Site Map
Access
Library
for Student
for Alumni
Intranet
Job Openings
Home
>
News
>
announcements
>
Publication of Informatio…
News & Events
News & Events
Latest News
2023.08.22
Announcements
Publication of Information Security Incident Report
We deeply apologize for the significant inconvenience caused by the information security incident that occurred at our university from September 2022 to May of this year.
We hereby release the "Investigation Report on Unauthorized Access to the Information Systems of the National Graduate Institute for Policy Studies," which has been compiled by external experts who assisted us with the recovery from the incident.
The incident occurred on August 29, 2022. In response, we promptly shut down network connections and conducted a thorough investigation and recovery operation. By May 8, 2023, internet services were restored. During the period of internet service suspension, we established an alternative internet connection, ensuring the continuation of cloud service, research and educational activities such as online classes and online meetings—albeit with certain limitations.
Throughout the recovery process, we worked in close collaboration and cooperation with various stakeholders, including the Ministry of Education, Culture, Sports, Science, and Technology, the Personal Information Protection Commission, and the police.
It is important to note that no personal information breaches and no ransomware incidents were identified in relation to this incident. Since the hacker had gained knowledge of the network configurations and vulnerabilities were discovered within the information system, comprehensive organizational and technical measures were undertaken before the restoration of network communications, so as to ensure robust security measures. (Note: details of the measures taken are available in Chapter 10 of the report.)
We sincerely acknowledge the content of this report and are committed to making every effort to prevent any recurrence. The external experts (Advisory Board) who have compiled the report are as follows:
Satoshi Matsuura (Professor, Global Scientific Information and Computing Center, Tokyo Institute of Technology)
Security Advisor, National Graduate Institute for Policy Studies
Yutaka Nakamura (Professor, Information Science and Technology Center, Kyushu Institute of Technology)
Security Advisor, National Graduate Institute for Policy Studies
Hiroshi Kawaguchi (Representative Director, Kawaguchi Sekkei, Inc.)
Deputy Chief Information Security Officer, National Graduate Institute for Policy
〇Full Report Available
Here
(Japanese only)
〇
Apology from the President of the National Graduate Institute for Policy Studies
[Summary of the Incident Report]
1. Incident Overview
On August 29, 2022, a system administrator discovered suspicious logs on the university's internal server and promptly reported the matter to the executive. As an urgent response measure, the web server was immediately halted. Subsequently, the Security Operation Center (SOC) reported additional instances of suspicious access, leading the Chief Information Security Officer (CISO) and the Computer Security Incident Response Team (CSIRT) to decide, on September 3, to isolate the university's internet connection by means of a firewall. An emergency response headquarters was established under the direction of the president, and deliberations regarding appropriate measures were initiated.
2. Extent of Damage
Investigation by a security company determined that the attacker had compromised 10 servers and 2 terminals using a web shell. This breach resulted in (a) the exposure of ID and password credentials of all university users, and (b) the scanning of the university's network configuration, by which the attacker gained knowledge of the system architecture. The identity of the attacker has not been ascertained.
Furthermore, an internal investigation carried out in collaboration with the advisory board concluded that audit logs from the file server were generated through routine user activities, which negated the possibility of confidential or personal information leakage. This finding was duly reported to the Personal Information Protection Commission.
3. Key Factors and Measures for Prevention
The primary factors contributing to the incident include organizational aspects, particularly a shortage of information systems personnel; and the absence of robust mechanisms for system and security operations. Additionally, technical factors such as inadequate vulnerability management within the system and insufficient utilization of security devices such as firewalls were also identified as contributing factors. To address these factors, it is essential to implement preventive measures encompassing both organizational and technical aspects, particularly reinforcement of the information systems team; establishment of a vulnerability management framework; and establishment of ongoing comprehensive operation and management of security equipment.
For inquiries about this information
PR team, General Affairs Division
kouhou
grips.ac.jp
News & Announcements
News & Announcements
Events Information
Events & Symposiums
GRIPS FORUM
Seminars
7-22-1 Roppongi, Minato-ku, Tokyo 106-8677
TEL : +81-(0)3-6439-6000
FAX : +81-(0)3-6439-6010
PAGE TOP
Print Out
Contact
Website Policy
Privacy Policy
Information Security Policy
Social Media Operational Policy
Copyright © National Graduate Institute for Policy Studies
Lightweight version
Language
Japanese
Site Map
Access
Library
for Student
for Alumni
Intranet
Job Openings
About GRIPS
About GRIPS
About GRIPS
President’s Desk
History
Administration and Organization
GRIPS ALLIANCE
Facts & Figures
Faculty Directory
GRIPS in the Media
Awards and Honors
Major Partner Universities and Institutions
Government-Academia-Private Sector Collaborative Projects
Presenters
Brochures
Roppongi Campus
GRIPS Fund
Access and Maps
(Japanese) 評価
(Japanese) 施設貸出
Contact Us
News & Events
News & Events
News & Announcements
Events & Symposiums
GRIPS FORUM
Seminars
Admissions / Scholarships
Admissions / Scholarships
Admissions
(Japanese) 募集要項
How to Apply
Scholarships / Tuition and Fees
Application Deadlines
Application FAQs
Pre-Arrival FAQs
GRIPS Bulletin (Academic Information)
GRIPS Bulletin (Student Life Guide)
Education
Education
Degree Programs
Information for International Students
Admissions Policy, Curriculum Policy, and Degree-Granting Policy
Master’s Programs (Programs offered in English)
Master’s Programs (Programs offered in Japanese)
Docotral Programs
Doctoral Dissertation, Summary, Defense Results, etc.
Non-degree Certificate/Diploma System
GRIPS Bulletin (Academic Information)
GRIPS Bulletin (Student Life Guide)
Academic Information
Academic Resources & Facilities
IT Support
Center for Data Science
Center for Professional Communication
Health & Fitness
Executive Training
Executive Training
Executive Training
Tailor-Made Short-Term Training
Research
Research
Research
Seminars and Research Groups
Faculty Directory
Research Fellows
Policy Research Center
The Science for RE-designing Science, Technology and Innovation Policy Center (SciREX Center)
Center for Data Science
Projects
Institutional Repository
Towards the Prevention of Unlawful Acts
Library
Alumni
Alumni
About Our Alumni
Stay Connected
Alumnus of the Month (ALMO)
GRIPS SDGs Award
Get Involved
Request for certificates
(Japanese) GRIPS国内同窓会報
FAQs
GRIPS Alumni Homecoming
Site Map
Access
Library
for Student
for Alumni
Intranet
Job Openings
Home
>
News
>
announcements
>
Publication of Informatio…
News & Events
News & Events
Latest News
2023.08.22
Announcements
Publication of Information Security Incident Report
We deeply apologize for the significant inconvenience caused by the information security incident that occurred at our university from September 2022 to May of this year.
We hereby release the "Investigation Report on Unauthorized Access to the Information Systems of the National Graduate Institute for Policy Studies," which has been compiled by external experts who assisted us with the recovery from the incident.
The incident occurred on August 29, 2022. In response, we promptly shut down network connections and conducted a thorough investigation and recovery operation. By May 8, 2023, internet services were restored. During the period of internet service suspension, we established an alternative internet connection, ensuring the continuation of cloud service, research and educational activities such as online classes and online meetings—albeit with certain limitations.
Throughout the recovery process, we worked in close collaboration and cooperation with various stakeholders, including the Ministry of Education, Culture, Sports, Science, and Technology, the Personal Information Protection Commission, and the police.
It is important to note that no personal information breaches and no ransomware incidents were identified in relation to this incident. Since the hacker had gained knowledge of the network configurations and vulnerabilities were discovered within the information system, comprehensive organizational and technical measures were undertaken before the restoration of network communications, so as to ensure robust security measures. (Note: details of the measures taken are available in Chapter 10 of the report.)
We sincerely acknowledge the content of this report and are committed to making every effort to prevent any recurrence. The external experts (Advisory Board) who have compiled the report are as follows:
Satoshi Matsuura (Professor, Global Scientific Information and Computing Center, Tokyo Institute of Technology)
Security Advisor, National Graduate Institute for Policy Studies
Yutaka Nakamura (Professor, Information Science and Technology Center, Kyushu Institute of Technology)
Security Advisor, National Graduate Institute for Policy Studies
Hiroshi Kawaguchi (Representative Director, Kawaguchi Sekkei, Inc.)
Deputy Chief Information Security Officer, National Graduate Institute for Policy
〇Full Report Available
Here
(Japanese only)
〇
Apology from the President of the National Graduate Institute for Policy Studies
[Summary of the Incident Report]
1. Incident Overview
On August 29, 2022, a system administrator discovered suspicious logs on the university's internal server and promptly reported the matter to the executive. As an urgent response measure, the web server was immediately halted. Subsequently, the Security Operation Center (SOC) reported additional instances of suspicious access, leading the Chief Information Security Officer (CISO) and the Computer Security Incident Response Team (CSIRT) to decide, on September 3, to isolate the university's internet connection by means of a firewall. An emergency response headquarters was established under the direction of the president, and deliberations regarding appropriate measures were initiated.
2. Extent of Damage
Investigation by a security company determined that the attacker had compromised 10 servers and 2 terminals using a web shell. This breach resulted in (a) the exposure of ID and password credentials of all university users, and (b) the scanning of the university's network configuration, by which the attacker gained knowledge of the system architecture. The identity of the attacker has not been ascertained.
Furthermore, an internal investigation carried out in collaboration with the advisory board concluded that audit logs from the file server were generated through routine user activities, which negated the possibility of confidential or personal information leakage. This finding was duly reported to the Personal Information Protection Commission.
3. Key Factors and Measures for Prevention
The primary factors contributing to the incident include organizational aspects, particularly a shortage of information systems personnel; and the absence of robust mechanisms for system and security operations. Additionally, technical factors such as inadequate vulnerability management within the system and insufficient utilization of security devices such as firewalls were also identified as contributing factors. To address these factors, it is essential to implement preventive measures encompassing both organizational and technical aspects, particularly reinforcement of the information systems team; establishment of a vulnerability management framework; and establishment of ongoing comprehensive operation and management of security equipment.
For inquiries about this information
PR team, General Affairs Division
kouhou
grips.ac.jp
News & Announcements
News & Announcements
Events Information
Events & Symposiums
GRIPS FORUM
Seminars
7-22-1 Roppongi, Minato-ku, Tokyo 106-8677
TEL : +81-(0)3-6439-6000
FAX : +81-(0)3-6439-6010
PAGE TOP
Print Out
Contact
Website Policy
Privacy Policy
Information Security Policy
Social Media Operational Policy
Copyright © National Graduate Institute for Policy Studies