---
title: "Foxconn Hit by Cyberattack as Hackers Claim 8TB Data Theft"
date: 2026-05-13
author: "Sofia Ramirez"
featured_image: "https://sqmagazine.co.uk/wp-content/uploads/2026/05/foxconn-confirms-ransomware-attack-on-american-factories.jpg"
categories:
  - name: "Cybersecurity"
    url: "/cybersecurity.md"
tags:
  - name: "News"
    url: "/tag/news.md"
---

# Foxconn Hit by Cyberattack as Hackers Claim 8TB Data Theft

Foxconn says some of its North American factories were affected by a cyberattack after a ransomware group claimed it stole 8TB of company data.

## Quick Summary

- Foxconn confirmed a cyberattack affected parts of its North American operations.
- The Nitrogen ransomware group claims it stole nearly 8TB of sensitive data.
- The leaked data allegedly includes project details, schematics, and internal company files.
- Foxconn says affected factories are now resuming normal production.

## What Happened?

Foxconn, one of the world’s largest electronics manufacturers and a major supplier for [Apple](https://sqmagazine.co.uk/apple-statistics/), Dell, Google, and Nvidia, has confirmed that some of its North American factories suffered a cyberattack in recent days. The incident surfaced after the **Nitrogen ransomware group** claimed responsibility for breaching the company’s systems and stealing nearly **8 terabytes of confidential data**.

The company has not officially verified the scope of the data theft, but reports suggest the stolen files may include sensitive internal documents, customer project details, operational records, and engineering schematics connected to major technology companies.

> More than 10 million documents spanning 8TB were reportedly stolen from Foxconn’s network. Confidential AMD, Google, and Intel projects are at risk of exposure, but Apple’s tech appears to be safe. By @[@MarkozNewz](https://twitter.com/MarkozNewz?ref_src=twsrc%5Etfw)   
>    
>  <https://t.co/fgSgGFKwJI>
> 
> — AppleInsider (@appleinsider) [May 12, 2026](https://twitter.com/appleinsider/status/2054307679963582663?ref_src=twsrc%5Etfw)

 ## Hackers Claim Massive Data Theft

The [ransomware](https://sqmagazine.co.uk/ransomware-statistics/) group listed Foxconn on its leak site earlier this week and claimed to possess millions of files taken from the electronics giant. According to reports, the attackers are attempting to extort the company by threatening to publish or sell the stolen data online.

Some sample files allegedly linked to the [data breach](https://sqmagazine.co.uk/data-breach-statistics/) have already been posted by the hackers. However, reports indicate there is currently no clear evidence showing direct leaks connected to future Apple products or unreleased devices.

Cybersecurity researchers say Foxconn is a particularly attractive target for ransomware groups because the company manages manufacturing operations and intellectual property for several of the world’s largest tech brands. The company’s global footprint and deep involvement in the electronics supply chain make it highly valuable for cybercriminals seeking both money and sensitive corporate data.

Allan Liska, a threat intelligence analyst at security firm Recorded Future, said, “**Ransomware groups are increasingly targeting victims that can impact the supply chain, whether it is physical or software**.”

## Factories Across North America Affected

The attack reportedly impacted facilities in several locations across the United States and Mexico, including Wisconsin and Texas. Workers at Foxconn’s Mount Pleasant campus in Wisconsin reportedly experienced a full network outage during the incident.

According to reports from employees, WiFi systems stopped working, company computers were shut down, and digital timecard systems became unavailable. Workers were reportedly instructed not to log back into company systems while Foxconn’s security teams worked to contain the attack.

Despite the disruption, Foxconn says affected facilities are gradually returning to normal operations. The company has not disclosed whether any ransom payment was demanded or if negotiations with the attackers are taking place.

## Nitrogen Ransomware Group Under Spotlight

The **Nitrogen ransomware group** first emerged around 2023 and has since been linked to multiple attacks targeting manufacturing, retail, and technology companies. Security researchers believe the group has connections to the infamous **ALPHV BlackCat** ransomware operation.

Experts also say Nitrogen’s ransomware code may have evolved from the notorious **Conti ransomware** codebase, which was widely used in [high profile cyberattacks](https://sqmagazine.co.uk/cybersecurity-attacks-statistics/) over the past few years.

Researchers from Flashpoint said the group has targeted roughly 50 organizations since becoming active, with manufacturing companies remaining one of its biggest focuses.

Interestingly, cybersecurity experts noted that Nitrogen’s encryption system reportedly contains a technical flaw that can permanently lock encrypted data, even if attackers later attempt to restore access.

## Foxconn Has Faced Previous Ransomware Incidents

This is not the first time Foxconn has been targeted by cybercriminals. In 2020, a Foxconn facility in Mexico was hit by the **DoppelPaymer ransomware group**, which demanded millions of dollars in Bitcoin. In later years, the company and some of its subsidiaries also faced attacks linked to the **LockBit ransomware gang**.

The latest breach once again highlights the growing cybersecurity risks facing global manufacturing companies and supply chain operators. As major tech firms increasingly rely on large international partners like Foxconn, cyberattacks against manufacturers can quickly become a much larger industry wide concern.

## SQ Magazine Takeaway

I think this attack is another reminder that even the biggest technology supply chain companies are still vulnerable to ransomware groups. What makes this more serious is not just the temporary disruption at factories, but the possibility that confidential client data and engineering information could end up online. Companies like Foxconn sit at the center of the global tech industry, so a single breach can create ripple effects across multiple brands and markets.

Incidents at the scale Foxconn is now facing keep pulling defensive-operations talent into short supply, which is one reason employer demand for foundational credentials such as CompTIA Security+ keeps holding up even as wider tech hiring softens. Primer hubs like [Prepaway](https://www.prepaway.com/certification/5-cyber-security-skills-to-build-with-comptia-security/) tend to be the first stop for working engineers building toward the cert.