TL;DR
Nitrogen ransomware hackers claim to have breached Foxconn, a key supplier for Apple, Google, and Nvidia, stealing over 11 million files. Foxconn confirms attack but reports factories are resuming normal operations. The full impact remains unclear.
Cybercriminal group Nitrogen has claimed responsibility for a ransomware attack on Foxconn, one of the world’s largest electronics manufacturers, affecting facilities in North America. Foxconn confirmed the breach but stated that affected factories are returning to normal operations. This incident raises concerns about supply chain security for major tech companies.
Foxconn, which supplies components and devices for Apple, Google, Nvidia, and Sony, acknowledged on May 13, 2026, that it was targeted by a cyberattack. The ransomware gang Nitrogen, known for double-extortion tactics, claimed to have stolen over 11 million files, including confidential data from Foxconn’s clients. The hackers published images purportedly showing product schematics, guidelines, and bank statements as proof of their breach.
Foxconn’s statement indicated that the affected facilities are currently resuming normal production, but did not specify the extent of operational disruption or the specific data compromised. The group’s claim of theft and the publication of sensitive information suggest a significant breach, though Foxconn has not confirmed the scope of data stolen or whether any client data was leaked publicly.
Why It Matters
This incident underscores the growing threat of ransomware groups targeting global supply chains, especially in the electronics manufacturing sector. Foxconn’s role as a key supplier for major tech firms means that any disruption or data breach could have ripple effects across the industry, potentially affecting product development, confidentiality, and corporate security. The attack also highlights the increasing sophistication of cybercriminal tactics, including double extortion, which pressures victims into paying ransoms to prevent data leaks.
Trade up to WatchGuard Firebox M290 with 3-yr Total Security Suite
Enterprise-grade prevention, detection, correlation and response from the perimeter to the endpoint with our Total Security Suite.
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Background
Foxconn has previously been targeted by cyber threats, but this is among the most significant breaches reported in recent years. The ransomware group Nitrogen has gained notoriety for its double-extortion tactics, often stealing data before encrypting files and threatening to leak the information if ransoms are not paid. The attack follows a pattern of increasing cyberattacks on critical manufacturing infrastructure, raising concerns about supply chain vulnerabilities amid broader geopolitical tensions and cybercrime activity.
“We are aware of the cyberattack and are actively working to assess and mitigate its impact. Our facilities are operational, and we are cooperating with authorities.”
— Foxconn spokesperson
“We have stolen over 11 million files from Foxconn, including confidential client information. We are releasing some images as proof of our access unless demands are met.”
— Nitrogen ransomware group
CompTIA SecAI+ Study Guide: Comprehensive Exam-Focused AI Security Reference with Digital Tools for Smart Learning, Including PBQ Scenarios, Flashcards & Test Simulator
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
What Remains Unclear
It is not yet clear how much data was actually leaked publicly or the full scope of operational disruption at Foxconn. The company has not disclosed whether any client data, such as from Apple or Google, was exposed or leaked. The extent of financial or reputational damage remains uncertain, and investigations are ongoing.
The Practice of Network Security Monitoring: Understanding Incident Detection and Response
Used Book in Good Condition
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
What’s Next
Foxconn is expected to conduct a comprehensive security review and may implement additional cybersecurity measures. Authorities are likely to investigate the breach further, and there may be legal or regulatory implications. The ransomware group may release more stolen data or issue further demands, and the incident could prompt increased scrutiny of supply chain cybersecurity across the industry.
The 72-Hour Family Survival Guide (US-Iran War Edition): The Clock is Ticking. Act Now Before Phones Fail, Stores Empty, and Help Never Comes
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Key Questions
Has Foxconn confirmed the extent of data stolen?
Foxconn has acknowledged the breach but has not specified the full extent of data stolen or leaked. The hackers claim to have stolen over 11 million files, including confidential information from clients.
Are Foxconn’s operations still affected?
Foxconn reported that affected factories are currently resuming normal production, suggesting that operational disruption may be limited or under control at this stage.
What companies could be impacted by this breach?
The hackers claim to have stolen data from Foxconn’s clients, including Apple, Google, Nvidia, Dell, and Intel, potentially exposing sensitive information related to these companies.
Will this breach affect product supply or development?
It is unclear at this point whether the breach will impact product supply chains or ongoing development projects, but the leak of confidential data could pose risks to client confidentiality and future product plans.
