Foxconn confirms that it has been affected by ransomware
Tech manufacturing company Foxconn has publicly confirmed that it has been hit by ransomware. The infection occurred on November 29 and hit an “information system” used for operations in America. Criminals demand $ 34 million in ransom.
BleepingComputer already published an article on Monday claiming that Foxconn has been affected by the DoppelPaymer ransomware. In the meantime, the producer has publicly confirmed the cyber attack in a short statement, in which the producer reports that an ‘information system’ affecting the activities in North and South America has been affected. BleepingComputer reports that it concerns a production facility in Mexico. Foxconn further confirms that the perpetrators are demanding about 1,804 bitcoins in ransom, which equates to about $ 34 million.
The attackers claimed to have encrypted approximately 1,200 to 1,400 servers against BleepingComputer on Monday. They state that they stole 100GB of unencrypted files and deleted 20 to 30TB of backups.
The criminals behind the DoppelPaymer ransomware have also reportedly published stolen files on their own website. This would mainly include business documents. Personal data of employees or financial documents have not yet been leaked.
Foxconn reports to Reuters that the cyber attack had only a limited impact on business operations. The system in question is currently being ‘thoroughly inspected’ and put back into operation in phases. Further details about the cyber attack are not yet shared, but the manufacturer says it is working with “ authorities and technical experts ” to identify those responsible.