FRIDAY, JULY 10, 2026 48° E  /  GLOBAL TECH · SUMMARISED SUBSCRIBE
AI, business, devices, policy — global tech, summarised every 30 minutes.
Security · 1h ago

KDDI Zero-Day Supply Chain Attack Hits 12M ISP Email Users

By Meridian48 News Desk · Summarised from DEV Community ·

A zero-day vulnerability in a third-party email system allowed attackers to breach KDDI's ISP infrastructure, compromising 12 million customer accounts. The attack exploited legacy software integration gaps, enabling lateral movement and data exfiltration of billing records and credentials. This incident underscores persistent risks in telecom supply chains where third-party systems operate under different patch cycles.

Meridian48 take
The breach is a textbook supply chain attack, but the real story is how telecoms continue to neglect isolation of legacy third-party systems despite repeated warnings.
Read the full reporting
KDDI Zero-Day Supply Chain Attack: 12M ISP Email Compromise →
DEV Community
supply-chain-attackzero-day
More security briefs
Go deeper on security
AllAIStartupsBusinessDevicesPolicySecurityDev ToolsPakistan