Ransomware Hackers Claim Breach at Foxconn, Major Apple and Google Supplier

The electronics manufacturing giant Foxconn, a key supplier for Apple, Google, and Nvidia, has confirmed it was hit by a Foxconn ransomware attack. The company acknowledged the cyberattack on Monday, stating that some of its facilities in North America may have been affected.

In a brief statement to the press, Foxconn said that the affected factories are now returning to normal production. However, the company did not provide further details about the scope of the breach or the data potentially compromised.

The Nitrogen Ransomware Gang Takes Credit

A ransomware group known as Nitrogen has claimed responsibility for the attack. On its dark web leak site, the group posted a statement alleging that it breached Foxconn’s systems. Nitrogen is a double-extortion ransomware operation, meaning it not only encrypts files but also steals sensitive data before demanding payment.

According to the hackers, they exfiltrated over 11 million files. These allegedly include confidential information from Foxconn’s customers, such as Apple, Dell, Google, Intel, and Nvidia. As proof of the breach, Nitrogen published screenshots of what appear to be product schematics, internal guidelines, and bank statements.

Nitrogen’s typical modus operandi involves threatening to leak the stolen data if the victim does not pay the ransom. This gives the group two ways to monetize the crime: either through the ransom payment itself or by selling the stolen data on underground markets.

Foxconn’s Response and Industry Impact

Foxconn has not yet responded to specific questions about the attack, including the exact number of affected factories or the validity of the hackers’ claims. The company’s initial statement did not mention any ransom demand or negotiations with the attackers.

This Foxconn ransomware attack highlights the vulnerability of major supply chains. Foxconn manufactures devices and components for some of the world’s largest tech companies. A breach at this level could have cascading effects on product development and delivery timelines.

What Is Double Extortion Ransomware?

Double extortion ransomware, as used by Nitrogen, has become increasingly common. The attackers first infiltrate a network, steal sensitive files, and then deploy ransomware to encrypt the systems. Victims face a dual threat: losing access to their data and having it publicly exposed.

This approach puts immense pressure on organizations to pay, even if they have backups. The risk of leaked intellectual property or customer data can be devastating for a company’s reputation and legal standing.

Lessons for Cybersecurity in Manufacturing

The incident serves as a stark reminder for the manufacturing sector. Cybercriminals often target large suppliers because they hold valuable data from multiple high-profile clients. Companies like Foxconn must invest in robust network segmentation, regular security audits, and employee training to detect phishing attempts early.

Furthermore, organizations should have a clear incident response plan. Quick containment and communication can mitigate damage. For more insights on protecting supply chains, check our guide on supply chain cybersecurity best practices.

As the investigation unfolds, the tech industry will be watching closely. The full extent of the Foxconn ransomware attack may not be known for weeks, but the implications for data security in global manufacturing are already clear.

World’s Largest Malware Banks Visualized as Hard Drives

Have you ever wondered what the world’s largest malware collections would look like if they were stacked as physical hard drives? The answer is surprisingly visual—and it involves some of the most iconic landmarks on Earth.

Recently, the malware research group vx-underground, which claims to host the largest archive of malware source code, revealed its dataset totals about 30 terabytes. For context, that is enough data to fill dozens of standard hard drives. However, a reply from Bernardo Quintero, the founder of VirusTotal, an online malware scanning service, put things into perspective: VirusTotal holds around 31 petabytes of malware samples submitted by users over the years. (One petabyte is roughly 1,000 times larger than a terabyte.)

These staggering numbers raise a fun question: What would these enormous malware collections hard drives look like if you stacked them? To find out, we did some simple math.

How We Calculated the Height of Malware Collections

To keep things simple, we assumed each hard drive is a standard 3.5-inch internal drive with a height of exactly 1 inch. These drives typically offer 1 terabyte of storage capacity, though real-world usable space is slightly less. Using this baseline, we calculated the total number of drives needed for each collection.

For vx-underground’s 30 terabytes, you would need exactly 30 hard drives. Stacked vertically, they would reach just 30 inches—or about 2.5 feet. That is roughly the height of a small child or a stack of three shoeboxes. For perspective, this reporter stands at 6 feet tall, meaning the vx-underground stack would only reach their waist.

Meanwhile, VirusTotal’s 31 petabytes would require 31,744 hard drives. Stacked one on top of another, this tower would soar to about 2,645 feet. That is an impressive height, but how does it compare to real-world structures?

Comparing Malware Data Stacks to Famous Landmarks

The world’s tallest building, the Burj Khalifa in Dubai, stands at 2,722 feet. VirusTotal’s stack of hard drives would fall short by just 77 feet—roughly the height of a seven-story building. In other words, the malware collection is almost as tall as the tallest structure ever built by humans.

Another famous comparison: the Eiffel Tower in Paris measures 1,083 feet. That means VirusTotal’s dataset is about two and a half Eiffel Towers high. Stacking three of these landmarks would barely surpass the malware archive’s height.

This visual exercise highlights the sheer scale of modern cybersecurity data. For researchers, these repositories are not just curiosities—they are essential tools for training detection models and tracking the evolution of digital threats.

Why These Malware Collections Matter

Cybersecurity companies, AI researchers, and threat intelligence firms rely on these massive datasets to develop better defenses. By analyzing millions of malware samples, they can identify patterns, predict new attack vectors, and create more robust antivirus software. Without such collections, the fight against cybercrime would be significantly harder.

As data volumes continue to grow, the physical representation of these archives becomes even more striking. What once fit on a few floppy disks now towers over skyscrapers. This trend shows no signs of slowing down, as malware becomes more sophisticated and widespread.

Internal Links for Further Reading

• Learn more about protecting your devices from malware
• Explore how data storage technologies have evolved

In conclusion, the world’s largest malware collections, when visualized as hard drives, offer a tangible sense of their enormity. From a modest 2.5-foot stack to a nearly 2,650-foot tower, these datasets represent the front line in cybersecurity research. Next time you upload a file to VirusTotal, remember: you are contributing to a pile of data that could rival the Eiffel Tower in height.

NCSC Backs Passkeys: A New Era for Secure Sign-In

The UK’s National Cyber Security Centre (NCSC) has officially thrown its weight behind passkeys, declaring that this technology should now be the first choice for consumers when logging into digital services. This NCSC passkeys endorsement signals a pivotal moment in the fight against password-related vulnerabilities.

Why the NCSC Passkeys Endorsement Matters Now

For years, passwords have been a weak link in cybersecurity, often reused or easily phished. However, the NCSC’s latest guidance, developed in collaboration with the Fast IDentity Online (FIDO) Alliance, reflects a dramatic improvement in the passkey ecosystem. The agency previously highlighted issues like inconsistent terminology and multiple ‘flavours’ of passkeys. Today, those challenges have largely been resolved.

Building on this progress, the NCSC no longer recommends passwords as a primary method, unless passkeys are unavailable. This shift is backed by real-world success, including the integration of passkeys within the National Health Service (NHS). As a result, UK consumers can expect a more seamless and secure sign-in experience.

How Passkey Authentication Works and Its Benefits

Passkey authentication relies on public-key cryptography, eliminating the need for shared secrets. Instead of typing a password, users verify their identity using biometrics (like a fingerprint or face scan) or a device PIN. This approach drastically reduces the risk of credential theft.

For businesses, the NCSC recommends adopting single sign-on (SSO) alongside passkeys. This combination simplifies access management while boosting security. Moreover, the FIDO Alliance’s open standards—such as FIDO2 and WebAuthn—ensure that passkeys work across different platforms and devices.

Key Advantages for Consumers and Organizations

• Enhanced security: Passkeys are resistant to phishing and credential stuffing attacks.
• User convenience: No more remembering complex passwords or resetting forgotten ones.
• Cross-platform support: Major tech players like Google, Apple, and Microsoft have already made passkeys the default sign-in option for users.

What the NCSC Passkeys Endorsement Means for UK Businesses

The NCSC’s consumer-focused guidance is just the beginning. The agency plans to release more detailed recommendations for businesses soon. In the meantime, organizations should start preparing for a passwordless future. This includes updating authentication systems to support FIDO2 standards and educating employees about the benefits of passkey authentication.

Interestingly, the UK government has already announced plans to roll out passkeys across all digital services by 2025. This move aligns with global trends, as Microsoft noted that passkeys do a “much better job” than passwords at protecting accounts from malicious attacks.

Transitioning to a Passwordless Future: Next Steps

For consumers eager to adopt passkeys, the process is straightforward. Most modern smartphones and browsers already support this technology. Simply enable passkey creation in your account settings for services like Google, Apple, or Microsoft. For businesses, consider integrating passwordless authentication best practices into your security roadmap.

Additionally, the NCSC encourages using FIDO2 and WebAuthn standards to ensure compatibility. By making this switch, you not only protect your data but also contribute to a broader reduction in cybercrime.

Ultimately, the NCSC passkeys endorsement marks a definitive break from the password era. With strong backing from cybersecurity authorities and tech giants alike, passkey authentication is poised to become the new normal. The question is no longer if you should switch, but when.