Why is it important: On May 31, a ransomware group using Lockbit 2.0 attacked a Foxconn plant in Tijuana, threatening to divulge confidential information if the company does not pay a ransom by June 11. The amount of the ransom is unknown, but, judging by the data, it could be in the tens of millions. past attacks.

- Advertisement -

foxconn just now confirmed that at the end of May, one of his factories was attacked by ransomware, which led to a halt in production. The company did not disclose who the culprit was, but a group of cybercriminals using the Lockbit 2.0 ransomware have already claimed responsibility.

- Advertisement -

The affected plant is located in Tijuana, on the border with San Diego, California, and primarily manufactures LCD TVs for the American region. Foxconn bought the plant from Sony back in 2009.

- Advertisement -

A spokesman for the company said its cybersecurity team is following through with the data recovery plan and that the plant is gradually ramping up production capacity to normal levels. It is not known whether this means that Foxconn managed to mitigate the attack on its own, or whether it reached an agreement with the criminals.

Foxconn manufactures various consumer electronics for many brands. Notable products manufactured by the company include the iPhone, iPad, Kindle, and video game consoles from Microsoft, Nintendo, and Sony. As a result, criminals can have valuable intellectual property shared under non-disclosure agreements, and a leak can be disastrous for both Foxconn and its customers.

This is not the first time a Foxconn facility in Mexico has been hit by ransomware. In 2020, the DoppelPaymer ransomware group announced that it had attacked one of the company’s factories in Ciudad Juarez. The attackers claimed to have stolen about 100 GB of data and demanded a ransom of $34 million in bitcoins.