2 min read

Foxconn hit with record-breaking $34 million ransom demand after cyber attack

Graham CLULEY

December 08, 2020

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Foxconn hit with record-breaking $34 million ransom demand after cyber attack
  • Electronics manufacturer Foxconn was infected with the DoppelPaymer ransomware last month
  • Hacking group has begun to publish files stolen from company’s servers during the attack

The world’s largest electronics manufacturer, Foxconn, has suffered a cyber attack and extortionists are reportedly demanding a $34 million ransom be paid for the recovery of its data.

As Bleeping Computer reports, a Foxconn’s facility located in Ciudad Juárez, Mexico, was hit over the US Thanksgiving holiday period by hackers who stole data from the company’s servers before encrypting systems.

The DoppelPaymer gang has claimed responsibility for the ransomware attack, and begun to publish stolen data on a website it created earlier this year to coerce companies into paying huge ransom demands. Foxconn, like other victims before it, will have been told by the criminals that it risks facing difficult questions by partners, customers, and the press if sensitive data is shared online.

According to Bleeping Computer the hackers claim to have encrypted over 1000 servers at Foxconn North America, and stolen 100 GB worth of data. To rub salt into the wound, the criminals are also said to have deleted 76 terabytes of backups.

The rest of the Foxconn company, which employs over 800,000 people and counts the likes of Apple, Dell, Amazon, Nintendo, Microsoft, and Sony amongst its many high-profile past and present customers, is not believed to be affected by the ransomware.

The criminals clearly feel that they’ve hit the jackpot though, demanding a cryptocurrency ransom of over 1800 Bitcoins (approximately US $34 million at current exchange rates).

Foxconn has made no public statement about the attack, and it is unclear whether they are prepared to negotiate with the cybercriminals or not. For now it would seem they would rather the incident remain private.

What is very public, however, is that the official website of Foxconn’s facility in Ciudad Juárez is currently displaying an error message:

Whether the website downtime is a direct result of the ransomware infection, or has been intentionally taken offline alongside other systems by Foxconn’s IT team is unclear.

Past victims of the DoppelPaymer ransomware include the city of Florence in Northern Alabama, the city of Torrance in the Los Angeles metropolitan area, Newcastle University, and the horrific ransomware arrack that resulted in a hospital patient dying in Germany.

tags


Author



Right now

Top posts

Abode IoT Security Camera Vulnerabilities Would Let Attackers Insert Images, Bitdefender Finds

Abode IoT Security Camera Vulnerabilities Would Let Attackers Insert Images, Bitdefender Finds

December 21, 2021

2 min read
Online Shoppers Beware, Mobile Scams Are on the Rise

Online Shoppers Beware, Mobile Scams Are on the Rise

December 17, 2021

2 min read
The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Unknown Person Zoom-Bombs Meeting in Italian Parliament and Blasts Anime Adult Content Unknown Person Zoom-Bombs Meeting in Italian Parliament and Blasts Anime Adult Content
Silviu STAHIE

January 21, 2022

1 min read
FBI Links Diavol Ransomware to Trickbot, Offers IOCs and Mitigations FBI Links Diavol Ransomware to Trickbot, Offers IOCs and Mitigations
Filip TRUȚĂ

January 21, 2022

2 min read
Data of 500,000 already vulnerable people stolen from Red Cross Data of 500,000 already vulnerable people stolen from Red Cross
Radu CRAHMALIUC

January 20, 2022

1 min read