Semiconductor Giant Nexperia Targeted in Massive 1 TB Data Breach by Dark Angels Ransomware Group

by | Apr 16, 2024 | News

Post Views: 201

Join our Patreon Channel and Gain access to 70+ Exclusive Walkthrough Videos.

Reading Time: 3 Minutes

Nexperia, a leading semiconductor manufacturer based in Nijmegen, Netherlands, has fallen victim to a significant cyberattack. The Dark Angels (Dunghill) ransomware group announced its responsibility for infiltrating the company’s servers and exfiltrating a staggering 1 terabyte of confidential data.

Owned by Wingtech Technology, a partially state-run Chinese entity, Nexperia employs around 14,000 individuals globally and operates key manufacturing sites in Hamburg, Germany, and Greater Manchester, England. The company is renowned for its extensive array of products, including transistors, diodes, and logic devices.

The breach was first acknowledged by Nexperia in March 2024 after discovering unauthorized access to their IT systems. In response, the company quickly isolated the compromised servers from the internet and initiated a thorough investigation with the aid of FoxIT, a third-party cybersecurity firm.

See Also: So, you want to be a hacker?
Offensive Security, Bug Bounty Courses

Discover your weakest link. Be proactive, not reactive. Cybercriminals need just one flaw to strike.

Details shared by the Dark Angels on their Tor-based leak site outline the scope of the stolen data, which includes:

285 GB of quality control data
896 client folders containing 24 GB of data, featuring brands like SpaceX, IBM, Apple, and Huawei
139 GB of highly confidential project data including NDAs, internal documents, trade secrets, designs, and manufacturing specifications
49 GB of industrial production data and instructions
Competitive assessments of products
45 GB of data on engineers’ experiences and studies
20 GB of product management data
201 GB of semiconductor manufacturing technologies
70 GB of commercial marketing data related to semiconductors
26 GB of pricing analysis and price books
20 GB of HR department data including employee personal data, passports, contracts, diplomas, salaries, and insurance
18 GB of drawings and schematics (.dwg files) for chips, microchips, and transistors
30 GB of user data
Production line settings
Repository with equipment configurations
26 GB of machine operation logs
1.2 GB of AWACS software
13 GB of .esm files
1.9 GB of .job files
3 GB of .svn-base data
101 GB of .pst files
1.5 GB of additional NDA files

Trending: 10 Misconceptions about Hacking

In a press statement, Nexperia confirmed their proactive engagement with relevant authorities, including the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) and local law enforcement, to address the legal and security ramifications of the incident. The company emphasized its ongoing commitment to uncovering the full extent of the breach and mitigating any further risks.

This cyberattack is not an isolated incident for the Dark Angels, as they previously targeted Johnson Controls in September 2023, demanding a ransom of $51 million. The escalating activities of this ransomware group underline a growing threat to global technology providers, underscoring the critical need for enhanced cybersecurity measures in an increasingly interconnected digital landscape.

Are u a security researcher? Or a company that writes articles about Cyber Security, Offensive Security (related to information security in general) that match with our specific audience and is worth sharing? If you want to express your idea in an article contact us here for a quote: [email protected]

Source: securityaffairs.com

Source Link