alphv attacks Bandai Namco

Incident Date:

July 11, 2022

World map



alphv attacks Bandai Namco


Bandai Namco




Anaheim, USA

California, USA

First Reported

July 11, 2022

Bandai Namco Suffers Ransomware Attack by ALPHV/Blackcat Group

Company Overview

Bandai Namco Holdings Inc., established in Tokyo, Japan, in 2006, aims to enhance its competitive edge in the global market and foster new synergies across its diverse divisions. These include Bandai Namco Toys & Collectibles America Inc., Bandai Namco Entertainment America Inc., Bandai Namco Amusement America Inc., BANDAI CORPORACION MEXICO, S.A. de C.V., and Bandai Namco Entertainment Brazil Ltd.

Vulnerabilities and Impact

The ALPHV/Blackcat ransomware group, known for its widespread attacks, has compromised over 1,000 entities, with a significant majority of these victims based in the United States. The group has amassed nearly $300 million in ransom payments. The recent attack on Bandai Namco represents a broader disruption effort, which includes the FBI's seizure of the group's website and the release of a decryption tool to aid victims in system recovery.

This attack on Bandai Namco has considerable implications, disrupting operations and potentially leading to the exposure of sensitive data. The company is advised to seek assistance from their local FBI field office.

Mitigation Strategies

Organizations are recommended to adopt several strategies to mitigate the risk of ransomware attacks. These include conducting regular inventories of assets and data, prioritizing the remediation of known exploited vulnerabilities, implementing and enforcing multifactor authentication with robust passwords, and eliminating unused ports along with unnecessary applications.

The ransomware attack on Bandai Namco by the ALPHV/Blackcat group underscores the persistent cybercrime threat facing the Media & Internet sector. It is imperative for companies to continually enhance their cybersecurity practices to safeguard their operations and sensitive information.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.