Kurita Water Industries Ltd. (Head office: Nakano-ku, Tokyo; President: Hirohiko Ejiri; hereinafter "Kurita") provides the update below on the incident that occurred at Kurita America Inc. (headquarters: Minnesota, United States; hereinafter "KAI"), a consolidated subsidiary in North America, during which a threat actor illegally accessed and infected our servers with ransomware in November 2024 (hereinafter the "Incident").

1. Background (Already reported)
On November 29, 2024, at around 3 p.m. (local time in the United States), an alert was detected on KAI’s security monitoring system. Multiple servers had experienced a ransomware attack and had been encrypted. We promptly disconnected the compromised servers from the network to prevent any further impact.

2. Leaked Information
Kurita has confirmed that the Incident resulted in certain information regarding accounting, personnel, and customer water quality testing data stored on KAI's servers for the past ten years being accessed by the threat actor. A further investigation by an external forensics investigation firm has confirmed that the amount of accessed information has not increased since the initial discovery and server disconnection. Furthermore, the information which the threat actor may have accessed did not include any personal information that would require notification by law, e.g., the EU General Data Protection Regulation (GDPR).

3. Efforts to prevent recurrence
The department in charge of information security has instructed each group company to promptly re-examine its current information security protocols to ensure currentness compliance. 

Due to the incident, we would like to once again apologize to our customers and business partners for their great concern and inconvenience. We, the Kurita Group, take this situation seriously and will work to strengthen information security measures across the entire Group.