Japanese entertainment giant Toho, the studio behind Godzilla Minus One, has been listed as a victim on a dark web leak site operated by the BlackLock ransomware group. Despite the claim, cybersecurity analysts have found no valid evidence to support the breach.
No Credible Data Found in Alleged Leak
The listing on the leak site included links to supposed data samples. However, according to the Cybernews research team, most of these links are either broken or contain non-functional and meaningless data.
“No useful information was found in the samples posted by the attackers,” stated the researchers.
Toho has not confirmed whether a breach occurred. The company has been contacted for comment, and an update is pending.
Toho: A Major Target with High Visibility
Founded in 1932, Toho is Japan’s largest film production and distribution company, known for blockbuster franchises including Godzilla, Seven Samurai, and King Kong vs. Godzilla. In 2024, the studio reported revenue exceeding $2 billion and employs over 3,600 staff.
The recent Godzilla Minus One received international recognition, winning an Academy Award for Best Visual Effects, making Toho a highly visible entity in the global entertainment sector.
BlackLock’s Growing Attack Profile and Recent Setback
The BlackLock ransomware gang emerged in early 2024 and quickly escalated its attack operations. By Q4 2024, it ranked seventh among the most active ransomware groups, with a 1,425% increase in activity from the previous quarter. Over the past year, the group has targeted at least 63 organizations, according to Ransomlooker, a dark web tracking tool.
However, BlackLock recently faced its own breach. Resecurity, a U.S.-based cybersecurity firm, discovered a vulnerability in BlackLock’s infrastructure and exploited it to gain insight into the group’s operations.
This counter-operation highlights growing momentum among cybersecurity firms to push back against ransomware gangs by leveraging their own technical flaws.
The legitimacy of the Toho claim remains in question until verifiable evidence or confirmation emerges from the company or third-party investigators.
