Japan's Active Cyber Defense Strategy

Uploaded on 2025-06-23 in INTELLIGENCE-Hot Spots-China, GOVERNMENT-Defence, FREE TO VIEW

Japan is creating a new cyber security strategy to be implemented by the end of 2025, as it moves to introduce a pre-emptive defence system by 2027. This illustrates that the government of Japan is responding to the growing risk of cyber attacks. 

In preparation for increasingly sophisticated cyber threats, the new strategy will probably focus on strengthening public-private cooperation, cultivating cyber talent and boosting international collaboration.

This cyber defence bill will allow government agencies to monitor external telecommunications and pre-emptively respond to signs of cyber attacks, including neutralising attackers' servers.

At a meeting chaired by Chief Cabinet Secretary Yoshimasa Hayashi at the government's cyber security strategy headquarters, participants agreed to enhance defense by tracking hard-to-detect signs of attack on administrative bodies and key infrastructure.

The potential for adopting quantum-safe encryption and supporting smaller companies in bolstering their cyber security frameworks was also discussed, as a law allowing acts of "active cyber defense was enacted recently.

The law permits the government to monitor communications data during peacetime and authorises the disabling of hostile servers when attacks occur. By the end of 2025, the headquarters will be revamped, with the prime minister taking charge. It is designed to take the lessons learned from US experience in conducting similar operations and apply them to Japan’s unique cultural and legal frameworks to improve its own cyber resilience. 

This development enables Japanese security agencies to proactively neutralise cyber threat actor operations before they could initiate their own attacks against Japanese targets.  The law also allows Japan to provide cyber support to its allies as long as it furthers Japan’s self-defence interests.

The concept of active cyber defence, somteimes called 'Defend Forward' enables the delivery of preemptive strikes with the intent of disrupting hostile cyber actions to be directed against it or entities that are in its interests to protect, which can include allies as observed with US active defence operations.  

Japan has been a frequent target of both cyber criminals as well as nation state actors that have targeted its critical infrastructure as well as private sector with a variety of attacks that have ranged from DDoS attacks, data breaches, and state-led cyber espionage campaigns.  

During the first three months of 2025, criminal hackers hijacked Japanese financial accounts and conducted approximately $2 billion in authorised trades and Japan has been a frequent victim of North Korean nation-state cyber operations.  

Japan's more active defence posture to address cyber adversaries is a catayst for other Westen nations, formalising the cyber 'cold war' that many believe already exists between the US and its Chinese, Northe Korean other  adversaries.  

Oodaloop   |   Bank Info Security   |   CAS     |   The GeoPolitics  |   Japan Today   |   Nihon Cyber Defence

Image: mirsad sarajlic

You Might Also Read:

Chinese Hackers Target Japan & EU:

If you like this website and use the comprehensive 7,000+ service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Three Million Records Exposed In Passion.io Data Breach
Police Shut Down A Criminal Malware Operation »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CIRT.GY

CIRT.GY

CIRT-GY is the national Computer Incident Response Team for Guyana.

World Wide Technology (WWT)

World Wide Technology (WWT)

WWT is a technology solution provider in the areas of big data, collaboration, computing and cloud, mobility, networking, security and storage.

Temasoft

Temasoft

TEMASOFT is a software company focused on developing security and infrastructure products.

Calero Software

Calero Software

Calero is a leading global provider of Communications and Cloud Lifecycle Management (CLM) solutions designed to simplify the management of voice, mobile and other unified communications services.

Greenwave Systems

Greenwave Systems

Greenwave's AXON Platform enables IoT and M2M network service providers to address security, interoperability, flexibility and scalability from a single IoT platform.

SlowMist

SlowMist

SlowMist is a blockchain ecosystem security company providing cybersecurity audits and protection for leading digital asset exchanges, crypto wallets, public chains, and smart contracts.

Qrator Labs

Qrator Labs

Qrator Labs is a leader in DDoS attack mitigation, helping organizations protect their websites from the most harmful, sophisticated DDoS attacks.

Blaick Technologies

Blaick Technologies

Blaick is an Israeli cyber-security company which deploys proprietary Artificial Intelligence threats detection technology for early prevention of online cyber crime.

Intellias

Intellias

Intellias is a trusted technology partner to top-tier organizations and digital natives helping them accelerate their pace of sustainable digitalization.

BlockAPT

BlockAPT

BlockAPT, empowering you with an advanced, intelligent cyber defence platform. We protect our customers digital assets by unifying operational technologies against advanced persistent threats.

Information Services Group (ISG)

Information Services Group (ISG)

As a leading global research and advisory firm, ISG partners with our clients to determine a future vision, lead rapid change and realize the value of your digital investments at scale.

Valimail

Valimail

Valimail delivers the only complete, cloud-native platform for validating and authenticating sender identity to stop phishing, protect and amplify brands, and ensure compliance.

Training.com.au

Training.com.au

Training.com.au is a comparison website through which those looking to learn about different aspects of cyber security can compare learning courses from training providers from across Australia.

Keytos

Keytos

Keytos has revolutionized the Identity Management and PKI industry by creating cryptographic tools that allow you to go password-less by making security transparent to the user.

Telenor Cyberdefence

Telenor Cyberdefence

Telenor Cyberdefence is a newly established (2024) cloud-born Managed Security Service Provider focused on the Nordic markets.

CyberSentriq

CyberSentriq

CyberSentriq provides an unmatched combination of proactive AI-driven email and web security, advanced data protection, and operational resilience.