Foxconn confirmed that ransomware group Nitrogen breached some of its North American factories in recent days, allegedly stealing 8TB of data. The attack underscores ongoing security vulnerabilities at a company central to global tech supply chains.
Foxconn, the Taiwan-based manufacturer responsible for assembling iPhones and other high-value electronics, disclosed the cyberattack through a statement to media outlets. The ransomware group Nitrogen claims responsibility and says it exfiltrated 8 terabytes of data from the facilities.
The breach affects North American operations of the company, which employs hundreds of thousands globally and serves as a critical node in Apple's manufacturing ecosystem. Foxconn has not specified which data was compromised or whether customer information was included in the theft.
Nitrogen, the group claiming the attack, typically operates by stealing data before encrypting systems, then demanding ransom payments in exchange for deletion promises and decryption keys. The group's claim of 8TB represents a substantial data haul, though the company has not independently verified the amount or confirmed whether negotiations are underway.
This incident marks another major cybersecurity failure for Foxconn, which has faced previous attacks. The manufacturer handles sensitive proprietary information alongside personal data of millions, making it an attractive target for criminal ransomware operators.
Foxconn said it was working to restore normal operations and did not immediately comment on whether ransom demands were made. The company typically downplays security incidents and provides minimal disclosure about breach scope or impact.
The attack reflects broader vulnerabilities in global manufacturing networks. As companies consolidate production at major contract manufacturers like Foxconn, cyberattacks gain access to data across multiple technology firms simultaneously. Security experts have repeatedly warned that contract manufacturers represent critical infrastructure risks that receive insufficient investment in defense capabilities.
Foxconn has not announced whether it will engage law enforcement or public disclosures about the attack's full scope.
Australia's eSafety watchdog will investigate whether major adult websites are allowing users to bypass age verification requirements using virtual private networks (VPNs). The probe follows new regulations introduced in March requiring age checks on adult content.
Dutch National Police have identified strong evidence that Dutch hackers were responsible for a February breach at telecommunications provider Odido. The investigation marks a significant development in the case.
Surveillance technology company Flock Safety did not issue a cease-and-desist letter to The Saturday Salon, a Newport Beach lecture series, despite claims posted on Instagram Thursday. The incident reignites debate over the company's practices and relationship with law enforcement.
The US Cybersecurity and Infrastructure Security Agency revealed it lacked a prepared incident response plan during a recent security event, forcing it to develop procedures in real time.