Foxconn suffered a ransomware attack in Mexico. The Taiwanese electronics manufacturer was affected by stolen files, deleted servers, and attacks on its encrypted files.
In accordance with BleepingComputer, the attack was held on November 29 at the facility located in Ciudad Juárez, Mexico.
The attack was carried out by the ransomware operator Double Paymer, what demands $ 34.7 million in Bitcoin from the company and already leaked generic Foxconn business documents and reports.
Your files, backups, and snapshots won’t be available until you pay for a tool. If no contact is made within three business days of infection, the first part of the data will be shared with the public.
—
BleepingComputer indicated that during the attack encrypted about 1,200 servers, stole 100 gigabytes of unencrypted files, and removed 20-30 terabytes backups as part of your attack.
In a message to the media, Foxconn confirmed the attack and said that little by little they are putting their systems back into service.
We can confirm that an information system in the United States supporting some of our operations in the Americas was the focus of a cybersecurity attack on November 29. We are working with technical experts and law enforcement agencies to conduct an investigation to determine the impact of this illegal action and identify those responsible and bring them to justice.
The encryption only affected Foxconn’s in North America and did not target workstations, DoppelPaymer said.
Other victims attacked by DoppelPaymer in the past include PEMEX, the city of Torrance in California, the University of Newcastle and Hall County in Georgia.
–
/nginx/o/2020/12/09/13519778t1h5388.jpg?resize=150%2C150&ssl=1)