Dutch chipmaker Nexperia confirmed late final week that hackers breached its community in March 2024 after a ransomware gang leaked samples of allegedly stolen knowledge.
Nexperia is a subsidiary of Chinese language firm Wingtech Expertise that operates semiconductor fabrication vegetation in Germany and the UK, producing 100 billion models, together with transistors, diodes, MOSFETs, and logic units. The Nijmegen-based firm employs 15,000 specialists and has an annual income of over $2.1 billion.
In a press assertion on Friday, the corporate disclosed a data breach that pressured it to close down IT programs and launch an investigation to find out the scope of impression.
“Nexperia has turn out to be conscious that an unauthorized third celebration accessed sure Nexperia IT servers in March 2024,” reads the assertion.
“We promptly took motion and disconnected the affected programs from the web to comprise the incident and carried out in depth mitigation.”
“We additionally launched an investigation with the help of third-party specialists to find out the character and scope of the incident and took robust measures to terminate the unauthorized entry.”
Nexperia says it reported the incident to the police and knowledge safety authorities within the Netherlands and contracted FoxIT to assist with the investigations.
Dunghill Leak claimed the assault
On April 10, the extortion website ‘Dunghill Leak’ introduced it had breached Nexperia, claiming to have stolen 1 TB of confidential knowledge and leaked a pattern of the allegedly stolen recordsdata.
The menace actors revealed photos of microscope scans of digital parts, worker passports, non-disclosure agreements, and numerous different samples whose authenticity hasn’t been confirmed by the chipmaker but.
Supply: BleepingComputer
Dunghill claims that they plan to leak the next knowledge if a ransom demand isn’t paid:
- 371 GB of design and product knowledge, together with QC, NDAs, commerce secrets and techniques, technical specs, confidential schematics, and manufacturing directions.
- 246 GB of engineering knowledge, together with inside research and manufacturing applied sciences.
- 96 GB of economic and advertising and marketing knowledge, together with pricing and advertising and marketing evaluation.
- 41.5 GB of company knowledge, together with HR, worker private particulars, passports, NDAs, and so forth.
- 109 GB of consumer and person knowledge, together with manufacturers comparable to SpaceX, IBM, Apple, and Huawei.
- 121.1 GB of assorted recordsdata and miscellaneous knowledge, together with e-mail storage recordsdata.
BleepingComputer has contacted Nexperia to ask about Dunghill’s allegations however a remark wasn’t instantly obtainable.
The Dunghill Leak website is linked to the Darkish Angels ransomware gang, which makes use of the information leak website to strain attacked organizations into paying a ransom.
In September 2023, BleepingComputer first reported that Darkish Angels breached constructing automation big Johnson Controls and encrypted the corporate’s VMWare and ESXi digital machines.
The menace actors warned in a ransom observe that if an extortion cost was not paid, the menace actors would publish the stolen knowledge on the Dunghill Leak web site, which by no means occurred.
At the moment, the Dunghill Leak extortion website lists twelve victims, with knowledge for eight both totally or partially launched, whereas two are marked as ‘offered on the darkish internet.’
