Foxconn has acknowledged a significant cyberattack targeting its operations in North America, following claims by the Nitrogen ransomware group of stealing a massive 8 terabytes of data. This breach has raised concerns about data security within the technology sector.
Details of the Cyberattack
On Monday, the Nitrogen ransomware group announced the breach on its data leak platform, claiming to have extracted over 11 million files from Foxconn’s systems. By the next day, Foxconn confirmed the attack, emphasizing the swift activation of their cybersecurity protocols to mitigate the impact and maintain operational continuity.
Among the facilities affected were Foxconn’s plants located in Mount Pleasant, Wisconsin, and Houston, Texas. The disruption led some employees to revert to manual processes or work from home, highlighting the immediate impact of the cyber intrusion.
Data Compromised in the Breach
The Nitrogen group claims that the stolen data encompasses sensitive project documentation, technical diagrams, and confidential instructions related to major tech companies like Intel, Apple, Google, Dell, and Nvidia. Analysis of some of the leaked files revealed financial records from the Houston site, circuit board designs, and network maps for projects associated with AMD, Intel, and Google.
Security experts have expressed alarm over the stolen network topologies, which could potentially expose vulnerabilities in global data centers. However, despite claims involving Apple, no specific Apple project files or diagrams were found in the released samples, as reported by AppleInsider.
Ransomware Group Profile
Active since 2023, the Nitrogen ransomware group is believed to be operating with source code derived from the Conti 2 builder. They employ a double-extortion tactic, encrypting data and threatening to release it publicly. There are also suspicions of their links to the notorious ALPHV/BlackCat ransomware network.
Foxconn has reported that the affected facilities are gradually returning to normal operations. However, the company has not confirmed whether any customer data was compromised. This incident marks the third significant ransomware attack on Foxconn, underscoring ongoing security challenges in the electronics supply chain.
Stay updated on this developing story by following us on Google News, LinkedIn, and X.
