Overview
- Foxconn, which confirmed Tuesday that some North American factories suffered a cyberattack, said affected sites are resuming production.
- The Nitrogen ransomware group claims it stole about 8 terabytes of data, or roughly 11 million files, including confidential instructions, project documents, and drawings tied to major customers.
- Analysts who reviewed attacker-posted samples report Foxconn internal files such as Houston financial records, engineering documents, and network topology for AMD, Intel, and Google, but no clear Apple schematics.
- Coveware warns Nitrogen’s ESXi encryptor corrupts keys during encryption, making decryption impossible even after payment and shifting pressure toward public data leaks.
- At the Mount Pleasant, Wisconsin plant, a network collapse starting May 1 disrupted work for about a week, with employees told to shut down systems and record hours on paper, and the case follows earlier Foxconn ransomware incidents in 2020, 2022, and 2024.