Manufacturing giant says affected factories are operational after ransomware group claims confidential file theft.
Summary
- Foxconn confirmed a cyberattack after ransomware crew claimed to steal Apple and Nvidia files
- Company states affected factories are back up and running
- Attack highlights supply chain security risks for major technology manufacturers
Electronics manufacturing giant Foxconn has confirmed it suffered a cyberattack after a ransomware group claimed to have stolen confidential files belonging to Apple and Nvidia.
The Taiwanese company, which manufactures products for major technology firms, told [The Register](https://www.theregister.com/cyber-crime/2026/05/12/foxconn-confirms-cyberattack-after-nitrogen-claims-apple-nvidia-data-theft/5239144) that affected factories are back up and running following the incident.
A ransomware crew known as Nitrogen claimed responsibility for the attack and alleged it had obtained confidential data from Apple and Nvidia, two of Foxconn’s major clients.
Foxconn has not disclosed the full scope of the breach or confirmed whether customer data was actually compromised. The company also has not revealed which specific facilities were targeted or the timeline of the attack.
The incident represents another significant supply chain security challenge for the technology sector, where manufacturers like Foxconn serve as critical links between component suppliers and end-product companies.
Supply chain implications
Foxconn operates manufacturing facilities across multiple countries and produces devices for some of the world’s largest technology companies. Any disruption to its operations can have cascading effects across the global technology supply chain.
The company’s confirmation that affected factories have resumed operations suggests the immediate production impact may be limited, though the full extent of any data compromise remains unclear.
Why It Matters
This incident highlights the persistent threat to technology supply chains, where a single breach at a key manufacturer can potentially expose sensitive data from multiple major clients. For CISOs at technology companies relying on third-party manufacturers, this reinforces the importance of robust vendor security assessments and incident response coordination.
The attack also demonstrates how ransomware groups increasingly target high-value manufacturing partners to maximise leverage over multiple organisations simultaneously.
What To Do Now
- Review security requirements and monitoring capabilities for key manufacturing partners and suppliers
- Verify incident response coordination procedures with critical third-party manufacturers
- Assess data classification and handling requirements for information shared with manufacturing partners
