- Luxshare has reportedly fallen victim to a ransomware attack
- The company is a crucial supplier for Apple, Tesla, Nvidia, and others
- RansomHub, a well-known ransomware group, is believed to be behind the attack
Luxshare, a vital supplier for major tech companies, has allegedly experienced a ransomware attack that threatens to expose confidential files, including product data, design documents, and employee personally identifiable information (PII).
The attackers, known as RansomHub, have claimed responsibility for the breach on a dark web forum, asserting that they have stolen sensitive data related to project timelines, 3D product models, and design specifications—information that could be invaluable to competitors.
“We were waiting for you for quite some time, but it seems that your IT department decided to conceal the incident that took place in your company. We strongly recommend that you contact us to prevent your confidential data and project documents from being leaked,” the attackers warned.
Valuable Data for Competitors
Researchers from the Cybernews team noted that the leaked information includes not only confidential company and project details but also employee PII, such as job titles, project roles, full names, and work emails, which could expose them to phishing attacks.
“The project dates span from 2019 to 2025, revealing sensitive business operations. Additionally, .dwg and gerber files, commonly used for product design, are also included,” the researchers added.
RansomHub is notorious in the ransomware landscape, having gained prominence in 2024 with claims of 75 ransom attacks by the second quarter of that year. Its high-profile victims include Kawasaki, Change Healthcare, and Planned Parenthood.
This attack poses serious implications for Luxshare and its clients, as the nature of the compromised data would be extremely valuable to competitors, who might be willing to pay a significant amount for such information.