Mitsubishi Electric again admits to widespread quality control cheating

Nifty slogan and more software suggested as the rectification

Mitsubishi Electric has admitted to widespread cheating on its internal quality control efforts.

The Japanese giant makes datacenter-scale power supply products, uninterruptible power supplies, high-end optical networking kit, plus plenty of electronics and semiconductor products – so this scandal is of concern to Reg readers. Buyers of other Mitsubishi Electric products, covering building operations, railways, and space systems, also have reason for concern.

One more thing: the company's motto is "Changes for the better." We can't make this stuff up.

Mitsubishi Electric (ME) first admitted to what it has termed “improper quality control” in June 2021, when it revealed staff had been lax when testing heating, ventilation, and air conditioning systems on some rail cars. The sprawling company commissioned an investigation that has now published three reports into its quality control practices, with the latest installment landing on May 25.

The reports detail a culture in which staff, and managers, often fudged test results to get products out the door. While the cheating did not see life-threatening flaws left in products, the investigation has found that lax quality control is pervasive across the company and its many subsidiaries.

For example, the corporation's power distribution systems unit didn’t properly conduct partial discharge tests – for 15 years, meaning 4,448 units went out the door in unknown condition. Tests to determine that units could withstand lightning strikes were skipped, too.

The latest investigation report, out this week, found 101 new instances of cheating, taking the total to 148. 16 ME facilities in Japan have now been found to have cheated on quality control – out of the 22 the company operates in its home nation.

ME’s original investigation timeline suggested it could be wrapped up by April 2022. The company now states the probe is open-ended, with at least one more report to follow in three months.

The situation is so serious that ME yesterday nominated new directors who are felt to be best positioned to sustain the ongoing investigation, and drive culture change.

A new corporate slogan – “Changes for the Better start with ME” – is already being promoted internally.

The probe also recommended investment in IT as one way to address the cheating culture, with digitization of test results proposed so that data is recorded in ways that make it harder for figures and outcomes to be fudged or ignored. The most recent report does not recommend any application or suggest a timeline for implementation.

The Register imagines that ME customers hope the company is better at implementing software than it is monitoring quality, or its culture. ®

Broader topics

Narrower topics

Other stories you might like

  • Tata Consultancy Services to create touchy feely 'Internet of Actions'
    Gets a grip on tech from Japanese startup to make it work

    The Japanese outpost of Indian services giant Tata Consultancy Services has revealed it is working on the "Internet of Actions" – an effort to bring the sense of touch to the internet.

    Tata has paired with a Japanese upstart from Keio University, Motion Lib, to spearhead the endeavor.

    TCS said it will eventually deliver a "new social infrastructure" by commercializing Motion Lib tech. But first and more practically, the company will create a demonstration environment for "real haptics" technology at its Digital Continuity Experience Center (DCEC) showroom.

    Continue reading
  • India extends deadline for compliance with infosec logging rules by 90 days
    Helpfully announced extension on deadline day

    Updated India's Ministry of Electronics and Information Technology (MeitY) and the local Computer Emergency Response Team (CERT-In) have extended the deadline for compliance with the Cyber Security Directions introduced on April 28, which were due to take effect yesterday.

    The Directions require verbose logging of users' activities on VPNs and clouds, reporting of infosec incidents within six hours of detection - even for trivial things like unusual port scanning - exclusive use of Indian network time protocol servers, and many other burdensome requirements. The Directions were purported to improve the security of local organisations, and to give CERT-In information it could use to assess threats to India. Yet the Directions allowed incident reports to be sent by fax – good ol' fax – to CERT-In, which offered no evidence it operates or would build infrastructure capable of ingesting or analyzing the millions of incident reports it would be sent by compliant organizations.

    The Directions were roundly criticized by tech lobby groups that pointed out requirements such as compelling clouds to store logs of customers' activities was futile, since clouds don't log what goes on inside resources rented by their customers. VPN providers quit India and moved their servers offshore, citing the impossibility of storing user logs when their entire business model rests on not logging user activities. VPN operators going offshore means India's government is therefore less able to influence such outfits.

    Continue reading
  • Indian government signals changes to infosec rules after industry consultation
    Reports suggest SMBs will get more time, but core elements including six-hour reporting requirement remain

    Indian media is reporting that the government has consulted with industry about its controversial infosec reporting rules, possibly resulting in concessions that slightly ease requirements for some businesses.

    The rules, introduced on April 29 with no warning and a sixty-day compliance deadline, require organizations operating in India to report 22 different types of information security incidents within six hours of detection, maintain extensive logs of their own and customers' activities and provide that info to authorities as required, and use only network time protocol (NTP) servers provided by Indian authorities or synced to those servers.

    The rules generated swift and widespread opposition on grounds that they were loosely worded, imposed enormous compliance burdens, made India less attractive to foreign tech companies, and would harm privacy. The requirement to report even trivial incidents within six hours was criticized as likely delivering a deluge of reports that would contribute little to the stated goal of securing intelligence with which to defend the nation. The Internet Society warned that insistence on using Indian NTP servers would create an unhelpful reliance on that infrastructure.

    Continue reading

Biting the hand that feeds IT © 1998–2022