Top chip maker Nexperia suffered a ransomware attack last month, with threat actors getting away with a terabyte of sensitive company data.
“Nexperia has become aware that an unauthorized third party gained access to certain Nexperia IT servers in March 2024,” the company said in a statement shared with BleepingComputer. “We took immediate action and disconnected the affected systems from the internet to contain the incident and implemented extensive measures.”
The company later brought in third-party security experts to determine the nature and extent of the incident, and took “strong measures” to end the unauthorized access.
Dark angels
In the meantime, a threat actor calling himself Dunghill Leak took responsibility for the attack, claiming they were in possession of a terabyte of confidential data. To prove its claims, the group shared a sample, which included microscope scans of electronic components, employee passports, non-disclosure agreements and other information.
The group is now demanding an unknown ransom, and if Nexperia refuses, they will reportedly leak:
371GB of design and product data, including QC, NDAs, trade secrets, technical specifications, confidential diagrams and production instructions.
246GB of technical data, including internal studies and production technologies.
96GB of commercial and marketing data, including pricing and marketing analyses.
41.5GB of company data, including HR, employee personal data, passports, non-disclosure agreements, etc.
109GB of customer and user data, including brands such as SpaceX, IBM, Apple and Huawei.
121.1GB of various files and miscellaneous data, including email storage files.
Nexperia is a subsidiary of Wingtech Technology, a major Chinese chipmaker with factories in Germany and the United Kingdom. It builds transistors, diodes, MOSFETs and logic isolators, it said. Annual sales exceed $2 billion.
In its article, BleepingComputer claims that the Dunghill Leak site is linked to the Dark Angels ransomware group.