Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Foxconn hit by ransomware attack

Incident
First reported
Last updated
Happening score
H score 14
2 unique sources, 2 articles

Summary

Hide ▲

Foxconn confirmed that some North American factories suffered a cyberattack, disrupting manufacturing operations and forcing a recovery effort to keep production and delivery moving. The company said affected factories are resuming normal production after its cybersecurity team activated response measures. The attack was claimed by the Nitrogen ransomware operation, which said it stole 8 TB of data and more than 11 million documents, though those theft claims were not independently confirmed.

Related Happenings

Manufacturing companies face a 2026 ransomware targeting surge

Target Trend
First: 14.05.2026 15:00 Last: 14.05.2026 15:00 Sources 1

How related: Data that Comparitech has compiled show as many as 600 ransomware attacks on manufacturing companies so far this year, with 55 of those victims confirming the incidents.

About this happening: **Manufacturing companies** are facing a **2026 ransomware targeting surge**, with aggregated counts reaching **600 attacks** and **55 confirmed victims**, signaling sustained pre...

Open Happening

Foxconn claimed data leak by Nitrogen ransomware group

Data Leak
First: 13.05.2026 20:13 Last: 13.05.2026 20:13 Sources 1

How related: Earlier this week, ransomware group Nitrogen claimed credit for the attack on its leak site, according to threat intelligence firm Hackmanac.

About this happening: The **Nitrogen ransomware group** claimed a **Foxconn data leak** involving **8TB** and more than **11 million files**, raising the risk that confidential manufacturing material t...

Open Happening

Pay2Key ransomware campaign accelerated by US-Iran tensions

Campaign
First: 26.03.2026 12:45 Last: 26.03.2026 12:45 Sources 1

About this happening: Pay2Key's ransomware operation appears to have accelerated amid **recent US-Iran tensions**, indicating an active campaign with broader victimization risk. The group has been acti...

Open Happening

Pay2Key ransomware activity with enhanced evasion and anti-forensics

Malware Activity
First: 26.03.2026 12:45 Last: 26.03.2026 12:45 Sources 1

About this happening: **Pay2Key** has re-emerged as a **ransomware** threat with enhanced **evasion, execution and anti-forensics** capabilities, increasing the difficulty of detection and response. Th...

Latest development: 31.03.2026 16:31

Iran has revived Pay2Key by recruiting affiliates from Russian cybercriminal forums and positioning the ransomware operation as a punitive arm of the Iranian state against high-impact US targets. KELA says the activity blends ransomware, pseudo-ransomware, and destructive wiper-like behavior, and that Iran-backed APT Agrius is also using Apostle malware, retrofitted from a data wiper into a ransomware variant, to obscure geopolitical motives.

Open Happening

Aleksey Olegovich Volkov sentenced in Yanluowang ransomware case

Law Enforcement
First: 24.03.2026 15:06 Last: 24.03.2026 15:06 Sources 1

About this happening: The **Justice Department** said **Aleksey Olegovich Volkov** was **sentenced to 81 months** in prison for serving as an **initial access broker** in **Yanluowang ransomware** atta...

Open Happening

Timeline

  1. 13.05.2026 15:49 2 articles · 14d ago

    Foxconn confirms North American factory cyberattack

    Initial Disclosure

    Foxconn said some of its North American factories suffered a cyberattack and that its cybersecurity team activated response measures and implemented operational controls to keep production and delivery moving while affected factories resumed normal production. Nitrogen ransomware claimed it stole 8 TB of data and more than 11 million documents from Foxconn.

    Show sources
    Open in new tab