Contract electronics manufacturer Foxconn has confirmed beeping computer that one of its factories in Mexico fell victim to cybercriminals. Specifically, a factory in Tijuana, a critical supply hub for the United States, is extorted by a ransomware gang. Operators behind Lockbit 2.0 ransomware have claimed responsibility.
According to information released today, the Foxconn Tijuana systems breach occurred in late May. A message from the Lockbit group says it has given Foxconn about a fortnight to comply with its demands or it will release “all available data” it stole from Foxconn’s servers. The demands of the extortionists were not disclosed.
As a manufacturing partner of some of the biggest names in technology, Foxconn may hold valuable and sensitive third-party data on its systems. That might be a bigger concern for Foxconn than its own proprietary information and registration data.
Foxconn has three factories in Mexico, responsible for producing electronic products such as LCD TVs, set-top boxes and smartphones. Additionally, Tijuana is a distribution center for inventory destined for the United States. A declaration beeping computer received from Foxconn said that since the ransomware attack in late May, a cybersecurity team is executing a recovery plan and operations are “gradually returning to normal.” Overall, the attack had “little impact on the overall functioning of the group,” the statement said. All affected customers, suppliers and members of the management team are kept informed of the impacts and fallout of the Lockbit attack. It is unclear if the Lockbit organization will benefit from the ill-gotten gains of this attack, a ransom payment, or if Foxconn managed to mitigate the effects independently. Of course, no company would want to telegraph the success of a ransomware group, if they were successful.
This is not the first contact with a major ransomware attack for Foxconn Mexico. In 2020, the contract manufacturer was hit when computer systems at its Ciudad Juárez plant fell victim to DoppelPaymer ransomware. A demand for $34 million in Bitcoin accompanied this breach. Earlier this year, the Lockbit gang reportedly tried to extract tens of millions of dollars from tire giant Bridgestone, after infiltrating its computer systems.