HackerFeeds
All ransomware incidents
kaneko-corp.co.jp

Ransomware group thegentlemen hits Kaneko

MEDIUM
·Not Found·JP·2026-07-16

Kaneko — a not found target operating in JP has been listed by the thegentlemen ransomware group on 2026-07-16. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.

Incident Report

Target OrganizationKaneko
Threat Group
thegentlemen
Summary***.co.jp zoominfo.com/c/kaneko/540044079 Japanese software company based in Itoigawa, Niigata, specializing in construction project management solutions. For over three decades, the company has developed the CDPM series, a widely recognized software for creating and managing complex construction schedules. Recently, the company has been actively driving digital transformation in the construction industry through its advanced CDPM-X64 platform, which introduces innovative features like native JSON support and comprehensive schedule analysis tools
Date of Breach2026-07-16
Discovery Date2026-07-16
RegionJP
Target Domainkaneko-corp.co.jp
Business SectorNot Found
Severity
MEDIUM

Claim by thegentlemen

***.co.jp zoominfo.com/c/kaneko/540044079 Japanese software company based in Itoigawa, Niigata, specializing in construction project management solutions. For over three decades, the company has developed the CDPM series, a widely recognized software for creating and managing complex construction schedules. Recently, the company has been actively driving digital transformation in the construction industry through its advanced CDPM-X64 platform, which introduces innovative features like native JSON support and comprehensive schedule analysis tools

Posted by the thegentlemen threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.

Disclaimer

HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.