Foxconn Confirms Nitrogen Ransomware Attack; Threat Actors Claim 8TB Data Theft Including Apple, Intel Files

Foxconn has confirmed a ransomware attack targeting its North American manufacturing operations, with the threat actors behind the intrusion claiming to have exfiltrated approximately 8 terabytes of sensitive corporate data. The attack, attributed to a ransomware group operating under the name Nitrogen, raises significant concerns given Foxconn's central position as a major contract manufacturer for the technology sector. The company operates facilities across Mexico, the United States, and Canada, making the breach a matter of cross-border supply chain risk.

The attackers allege they gained access to files belonging to Foxconn clients, including sensitive documents linked to Apple, Intel, and Google. Foxconn has not disclosed the specific scope of compromised data or confirmed which clients may be affected beyond acknowledging the ransomware incident itself. The claimed 8TB data volume, if accurate, would represent a substantial breach involving design schematics, production specifications, and potentially proprietary client communications. Security researchers note that Nitrogen is not among the most established ransomware-as-service groups, and the authenticity of the stolen data claims remains under scrutiny.

Foxconn's position as a critical node in global electronics manufacturing means the incident carries implications beyond the company's own network. Any confirmed breach of client data could trigger regulatory scrutiny, contractual liability, and supply chain reassessments from major technology firms. The company previously faced a ransomware attack attributed to the LockBit group in 2022, marking a recurrence of serious security failures. Investigators are examining whether the two incidents share technical infrastructure or overlapping TTPs, and federal cybersecurity agencies are likely monitoring the situation given the potential exposure of sensitive defense and commercial technology data.