In response to the rapid increase in fraudulent transactions involving securities accounts Cyber Security Cloud, Inc. and Kakko Corporation, operating member companies of the Cyber Security Association of Japan, will host an emergency cross-industry online seminar with the Financial Services Agency and industry experts to discuss the actual state of the damage and measures to prevent recurrence.
This seminar will be hosted by the Cyber Security Association of Japan (Cyber Security Association) and will be held on July 10, 2025.

On the day, the Cyber Security Office of the Financial Services Agency will be presenting to introduce the trends in strengthening cyber security in the financial sector and the agency's specific efforts. In addition, three companies, Finatext Holdings, Inc., Cyber Security Cloud, Inc., and Kakko Co., Ltd., will be presenting to share their concrete knowledge on practical and effective measures that take into account the latest attacks and the limitations of conventional measures, as well as industry-wide measures that will be required in the future.

■ Background and Issues
Since January 2025, fraudulent transactions through account hijacking have been discovered at 16 securities companies, starting with major online securities companies in Japan. The crimes were mainly committed by stealing IDs and passwords through phishing emails disguised as securities companies, and then impersonating the victims to buy and sell stocks.
The damage expanded rapidly in a short period of time, with a cumulative total of over 10,000 unauthorized accesses, approximately 6,000 cases of fraudulent trading, and damages totaling more than 524 billion yen in just a few months. The scale of this crime is incomparable to previous financial crimes, and the damage has spread to individual investors and mid-sized securities companies, shaking the reliability of the financial infrastructure itself.
In response to this situation, the Tokyo Metropolitan Police Department has begun a full-scale investigation into the case, suspected of violating the Unauthorized Computer Access Prevention Act, and at the same time, the government and industry are also taking emergency measures.
The Financial Services Agency is stepping up its efforts to grasp the extent of the damage and to provide guidance to securities companies, and the industry group, the Japan Securities Dealers Association (JSDA), is also accelerating the standardization of strengthened security, for example by making multi-factor authentication (MFA) mandatory for 76 companies when logging in.
However, as attacks become more sophisticated and diverse, countermeasures across the industry are still in the early stages, with some securities firms still lagging behind in introducing MFA and developing operational systems.In addition, the gap in security literacy among investors is also said to be one of the factors contributing to the spread of damage.
Against this background, this seminar will provide an opportunity for government, industry, and security experts to correctly understand and share "what is really happening in the financial industry right now" and "what will be required in the future."

■ Event Outline

■ Timeline and speakers
Time Content Speakers (tentative)

■ Speakers
Keisuke Konishi (Specialist, IT Cyber and Economic Security Supervisory Office, Financial Services Agency)

He has been involved in financial system development at a system vendor for about 15 years, and in addition to developing accounting and core systems, he has also experienced FinTech-related issues such as bank OpenAPI release and voice banking. Since 2021, he has been in charge of systems and security as a specialist in the Ministry of Economy, Trade and Industry's Commerce and Industry Supervision Division, which oversees credit cards and other products. Since 2024, he has been appointed as a specialist in the Financial Services Agency's IT Cyber and Economic Security Supervision Office. (Information Processing Security Specialist)

Satoshi Tajima (CTO/CISO, Finatext Holdings, Inc.)

After joining VOYAGE GROUP (now CARTA HOLDINGS) as a new graduate, he was in charge of the company's overall infrastructure in the system headquarters, and then experienced launching a security team. In February 2019, he joined Finatext and led the construction and operation of the group's entire system and security system as a lead engineer in the platform team. In June 2022, he was appointed CTO/CISO of Finatext Holdings. He holds CISSP/OSCP/OSWE certification.

Kentaro Sekine (Senior Managing Director, Kakko Co., Ltd.)

He is the product manager for fraud prevention solutions for the financial industry, such as the unauthorized login detection service "O-MOTION" and the phishing prevention package "Tetsuheki PACK for Phishing." He provides information from a practical perspective based on on-site issues through educational seminars and lectures for industry groups and financial institutions, focusing on the reality of unauthorized access and phishing attacks and countermeasures.

Yoji Watanabe (Representative Director, CTO Cyber Security Cloud, Inc.)

He was involved in research and development of cloud systems, real-time distributed processing, and anomaly detection at a company that provides R&D consulting to major IT companies. After joining Cyber Security Cloud in 2016, he served as CTO and director. In 2021, he was appointed Representative Director, CTO. In 2024, he was appointed Representative Director and President of the subsidiary, Generative Technology Inc.

■ Application and details
[Click here for the seminar application form] https://x.gd/KGLkn
*Pre-registration is required.

■ About the Japan Cyber Security Association
Name: Cyber Security Alliance (CSA)
Representative Director: Toshihiro Koike (Representative Director, President and CEO Cyber Security Cloud, Inc.)
Director: Ryuichi Ogawa (Specialist, Information-Technology Promotion Agency, Japan)
Director: Takamichi Saito (Director of the Cyber Security Research Institute, Meiji University)
Address: 13F JR Tokyu Meguro Building, 3-1-1 Kami-Osaki, Shinagawa-ku, Tokyo 141-0021
Established: March 31, 2023
URL: https://www.cscloud.co.jp/dx-security

The Cyber Security Association of Japan (Cyber Security Association) is carrying out various activities to make Japan's digital transformation safer, with the goal of achieving "zero serious damage from cyber attacks."
We provide not only enhanced content for those who are already working on cybersecurity, but also easy-to-understand content for those who ask "Is cybersecurity necessary?" and "What do you do to protect against cyber attacks?" that explains the necessity and specific countermeasures.

About Cyber Security Cloud, Inc.
Company name: Cyber Security Cloud, Inc.
Address: 13F JR Tokyu Meguro Building, 3-1-1 Kami-Osaki, Shinagawa-ku, Tokyo 141-0021
Representative: Toshihiro Koike Representative Director, President and CEO
Established: August 2010
URL: https://www.cscloud.co.jp
With the mission of "creating a cyberspace that people all over the world can use safely and securely," we are a Japanese security manufacturer that provides vulnerability information collection and management tools and fully managed security services for cloud environments, centered on web application security services that make full use of the world's leading cyber threat intelligence. As one of the global companies in cybersecurity, we will contribute to solving social issues related to cybersecurity and provide added value to society.

About Kakko Corporation
Company name: Kakko Co., Ltd.
Address: 1-5-31 Motoakasaka, Minato-ku, Tokyo 107-0051
Representative: President and CEO Hiroyuki Iwai
Established: January 2011
URL: https://cacco.co.jp/
Cacco's management vision is to "give shape to the 'Let's try it first' ideas of future game changers," and it aims to develop and provide algorithms and software based on security, payment, and data science technologies to help companies solve their problems and take on new challenges.
Positioning "fraud detection services" for online transactions as its core service, the company offers "O-PLUX," a fraud detection service which has the most implementations in Japan*1 and can handle everything from fraudulent member registrations/fraudulent logins to fraudulent orders; "O-MOTION," a fraudulent access detection service to prevent information leaks at financial institutions and member sites; and phishing prevention services.
Our data science services contribute to cost reduction, business efficiency, and profit improvement through data utilization and analysis in a variety of industries, including manufacturing, apparel, and construction.
*1: Tokyo Shoko Research, Inc. "Survey on the number of e-commerce sites in Japan that have implemented paid fraud detection services" as of the end of March 2025