Global electronics manufacturing giant Foxconn has confirmed that a cyberattack disrupted operations at several of its North American factories, with a ransomware group claiming responsibility and alleging the theft of vast amounts of sensitive corporate data.
The attack has been linked to the ransomware group Nitrogen, which says it exfiltrated approximately 8 terabytes of data containing more than 11 million files tied to Foxconn’s operations and customers.
Manufacturing Disruptions Reported Across North America
Foxconn, one of the world’s largest electronics manufacturers and a key supplier for major technology companies, said the incident affected multiple production facilities across North America.
The company stated that its cybersecurity teams responded immediately after detecting the intrusion, deploying containment measures to limit disruption and maintain production continuity. Foxconn added that affected facilities are now gradually returning to normal operations.
The company did not disclose when the breach occurred or specify which systems were impacted.
Ransomware Group Claims Large-Scale Data Theft
The Nitrogen ransomware group has taken credit for the attack and published claims on its leak site alleging access to highly sensitive materials. These reportedly include internal documents, engineering files, and project data associated with major technology firms such as Apple, Intel, Google, Dell, and Nvidia.
Screenshots shared by the group appear to show internal design files and project documentation, though these claims have not been independently verified.
Foxconn has not confirmed whether customer data was accessed or whether a ransom demand was made.
Questions Raised Over Data Leak Claims
Cybersecurity researchers have raised concerns about the credibility of Nitrogen’s claims. Some analysts note that the group has previously reused or recycled older materials in its extortion campaigns, potentially exaggerating the scale of stolen data to pressure victims into paying ransoms.
Despite this uncertainty, experts agree that Nitrogen has consistently targeted high-value manufacturing and technology organizations with data theft and extortion tactics.
Ransomware Tactics Focused on Double Extortion
Security analysts describe Nitrogen’s approach as a “double extortion” model, where attackers first steal sensitive data before encrypting systems or disrupting operations. This allows them to pressure victims both through operational downtime and the threat of public data exposure.
The strategy is increasingly common among ransomware groups targeting industrial and manufacturing environments, where downtime can result in significant financial and supply chain impacts.
Foxconn’s Global Manufacturing Footprint Adds to Risk Exposure
Foxconn, also known as Hon Hai Precision Industry, is headquartered in Taiwan and reported approximately $259 billion in revenue last year. The company operates a large manufacturing network across North America, including facilities in Mexico, Wisconsin, Ohio, Texas, Virginia, and Indiana.
As a key supplier for global technology leaders, disruptions to Foxconn’s operations can have cascading effects across the broader electronics supply chain.
Rising Threats to Industrial and Supply Chain Systems
Cybersecurity experts warn that manufacturing companies remain prime targets for ransomware groups due to their operational dependence on continuous production and the sensitivity of proprietary design data.
Attacks like this highlight the growing intersection between cybercrime and global supply chain risk, where a single breach can potentially impact multiple downstream technology companies.
Conclusion
The Foxconn cyberattack underscores the increasing pressure on global manufacturers from ransomware groups targeting both operational systems and intellectual property. While production is reportedly resuming, questions remain over the scale of the data breach and the credibility of the attackers’ claims.
As investigations continue, the incident adds to a growing list of cyberattacks targeting critical manufacturing infrastructure worldwide.
