- Foxconn suffers ransomware attack affecting multiple US facilities, forcing some employees to use pen and paper or stay home
- The Nitrogen Group claimed responsibility, saying they stole 8TB of confidential data and posted it on their leak page
- Stolen files reportedly include technical documents and schematics linked to Intel, Apple, Google, Dell, Nvidia and more
Foxconn has confirmed that it recently suffered a ransomware attack in which the company reportedly lost terabytes of sensitive information.
The attack apparently affected several facilities across the United States, even forcing some employees to go back to pen and paper for their day-to-day operations. Others were sent home until the problem was resolved.
A company spokesperson confirmed the incident but declined to share key details. Therefore, we do not know which facilities were hit, how many people were affected, or what kind of data was stolen during the raid.
Nitrogen claims the breach
“The cyber security team immediately activated the response mechanism and implemented several operational measures to ensure the continuity of production and supply. The affected factories are currently resuming normal production,” the spokesperson said.
In the US, Foxconn operates factories in Wisconsin, Ohio, Texas, Virginia and Indiana.
A ransomware group called Nitrogen claimed the breach, saying they stole eight terabytes of data and millions of technical information files from several high-profile tech companies.
Specifically, the stolen data reportedly includes confidential instructions, internal project documentation, and technical drawings related to projects at Intel, Apple, Google, Dell, and Nvidia, among others. Nitrogen also said they stole charts and confidential customer documents, all of which were allegedly posted on its “shaming” page.
The attack reportedly started on Friday when employees reported problems connecting to Wi-Fi. Some were sent to work from home, while others were given pens and papers.
Foxconn has a long history of ransomware attacks. In late May 2022, the company confirmed a ransomware incident at one of its Mexico-based manufacturing facilities, and before that the same thing happened in December 2020. The first attack was carried out by DoppelPaymer, and the second by LockBit. Both groups are now defunct.
Via The record
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds.
