Japan's 'Active Cyber Defence' Strategy

Japan is creating a new cyber security strategy to be implemented by the end of 2025, as it moves to introduce a pre-emptive defence system by 2027. This illustrates that the government of Japan is responding to the growing risk of cyber attacks. 

In preparation for increasingly sophisticated cyber threats, the new strategy will probably focus on strengthening public-private cooperation, cultivating cyber talent and boosting international collaboration.

This cyber defence bill will allow government agencies to monitor external telecommunications and pre-emptively respond to signs of cyber attacks, including neutralising attackers' servers.

At a meeting chaired by Chief Cabinet Secretary Yoshimasa Hayashi at the government's cyber security strategy headquarters, participants agreed to enhance defense by tracking hard-to-detect signs of attack on administrative bodies and key infrastructure.

The potential for adopting quantum-safe encryption and supporting smaller companies in bolstering their cyber security frameworks was also discussed, as a law allowing acts of "active cyber defense was enacted recently.

The law permits the government to monitor communications data during peacetime and authorises the disabling of hostile servers when attacks occur. By the end of 2025, the headquarters will be revamped, with the prime minister taking charge. It is designed to take the lessons learned from US experience in conducting similar operations and apply them to Japan’s unique cultural and legal frameworks to improve its own cyber resilience. 

This development enables Japanese security agencies to proactively neutralise cyber threat actor operations before they could initiate their own attacks against Japanese targets.  The law also allows Japan to provide cyber support to its allies as long as it furthers Japan’s self-defence interests.

The concept of active cyber defence, somteimes called 'Defend Forward' enables the delivery of preemptive strikes with the intent of disrupting hostile cyber actions to be directed against it or entities that are in its interests to protect, which can include allies as observed with US active defence operations.  

Japan has been a frequent target of both cyber criminals as well as nation state actors that have targeted its critical infrastructure as well as private sector with a variety of attacks that have ranged from DDoS attacks, data breaches, and state-led cyber espionage campaigns.  

During the first three months of 2025, criminal hackers hijacked Japanese financial accounts and conducted approximately $2 billion in authorised trades and Japan has been a frequent victim of North Korean nation-state cyber operations.  

Japan's more active defence posture to address cyber adversaries is a catayst for other Westen nations, formalising the cyber 'cold war' that many believe already exists between the US and its Chinese, Northe Korean other  adversaries.  

Oodaloop   |   Bank Info Security   |   CAS     |   The GeoPolitics  |   Japan Today   |   Nihon Cyber Defence

Image: mirsad sarajlic

You Might Also Read:

Chinese Hackers Target Japan & EU:


If you like this website and use the comprehensive 7,000+ service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Three Million Records Exposed In Passion.io Data Breach
Police Shut Down A Criminal Malware Operation »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Zybert Computing

Zybert Computing

Zybert Computing provide server solutions with built-in security and information protection features for the SME market.

USNA Center for Cyber Security Studies

USNA Center for Cyber Security Studies

The mission of the Center for Cyber Security Studies is to enhance the education of midshipmen in all areas of cyber warfare.

Cyber 2.0

Cyber 2.0

Cyber 2.0 is the only system in the world that blocks all forms of cyber attack within the organization, including new and unfamiliar attack methods.

Basis Technology

Basis Technology

Basis Technology provides software solutions for text analytics, information retrieval, digital forensics, and identity resolution.

Solana Networks

Solana Networks

Solana Networks is a specialist in IT networking and security.

Cyphercor

Cyphercor

Cyphercor is a leading smartphone and desktop-based two-factor authentication (2FA) provider.

Netmarks Indonesia (NMID)

Netmarks Indonesia (NMID)

Netmarks Indonesia is an IT solutions provider offering services related to ICT infrastructure, digital transformation and cyber security.

Cybersecurity Defense Initiative (CDI) - University of Arkansas

Cybersecurity Defense Initiative (CDI) - University of Arkansas

The Cybersecurity Defense Initiative is a national cybersecurity training program, developed for technical personnel and managers who monitor and protect our nation's critical cyber infrastructures.

VIQU Recruitment

VIQU Recruitment

VIQU Recruitment was formed with the primary focus of providing 'Smarter People Solutions' to the UK’s professional IT & Cyber Security markets.

Knovos

Knovos

Knovos is a leading technology innovator developing solutions for automating, integrating, and innovating Information Governance.

Newberry Group

Newberry Group

The Newberry Group provides comprehensive IT services and solutions that optimize operations, minimize risk and deliver measurable business value.

NI Cyber Security Centre

NI Cyber Security Centre

NI Cyber Security Centre works to make Northern Ireland cyber safe, secure and resilient for its citizens and businesses.

CornerStone

CornerStone

CornerStone is an award winning, independent risk, cyber and security consulting firm providing a range of Risk Management, Security Design and Implementation Management Services.

Cribl

Cribl

Cribl, the Data Engine for IT and Security, empowers organizations to transform their data strategy.

CyPro

CyPro

CyPro is a cyber security expert firm that specialises in providing cyber security services tailored for high-growth companies at every stage of their journey.

Ciena

Ciena

Ciena is a global leader in optical and routing systems, services, and automation software. We build the world’s most adaptive networks to address ever-increasing digital demands.