Skip to content

Incidents in sector:

Manufacturing

Credential stuffingOngoing

FortiBleed: leaked dataset exposes VPN credentials for ~74,000 Fortinet firewalls

A dataset dubbed FortiBleed exposed valid Fortinet FortiGate VPN credentials โ€” including plaintext passwords โ€” for 73,932 firewall URLs across 194 countries, the product of a Russian-speaking crew that reused passwords from earlier breaches and infostealer logs rather than any new Fortinet vulnerability.

Victim
Organizations running Fortinet FortiGate firewalls worldwide
RansomwareContained

Foxconn Nitrogen ransomware breach (2026)

The Nitrogen ransomware group claimed on its dark-web leak site that it had stolen over 11 million files from Foxconn's North American facilities, including confidential information belonging to customers Apple, Dell, Google, Intel, Nvidia, and Sony. Foxconn said affected factories were resuming normal production.

Victim
Foxconn (Hon Hai Precision Industry)
Data breachContained

Data leak at La Quiberonnaise

In early April 2026, the French cannery La Quiberonnaise confirmed that unauthorized access to its systems exposed customer personal data โ€” names, postal addresses, email addresses and phone numbers โ€” with the company notifying affected clients by email and reporting the breach to the CNIL.

Victim
La Quiberonnaise
RansomwareContained

Leak at Lisi

In early March 2026, French aerospace and automotive fastener manufacturer LISI Group was hit by the Qilin ransomware gang, which exfiltrated a limited set of corporate data โ€” bank account/IBAN details, supply contracts, confidentiality agreements and employee information โ€” from two ancillary sites.

Victim
Lisi
RansomwareOngoing

Leak at Michelin

In November 2025, the Cl0p extortion gang listed French tyre maker Michelin on its leak site, claiming to have stolen internal manufacturing, engineering, supply-chain, financial and HR files via the Oracle E-Business Suite zero-day (CVE-2025-61882).

Victim
Michelin
Data breachContained

Data leak at Volkswagen

A misconfigured Amazon cloud storage system run by Volkswagen software subsidiary Cariad exposed data on about 800,000 EV owners across VW, Audi, Seat and Skoda, including contact details and precise vehicle location data for roughly 466,000 cars.

Victim
Volkswagen
Records
800.0K
sabotageunresolved

Iranian steel plants cyber-sabotage

Predatory Sparrow compromised industrial control systems at three major Iranian steelmakers, halting production and โ€” in CCTV footage the group released โ€” causing a machine at Khouzestan Steel to spew molten metal and fire across the factory floor.

Victim
Khouzestan Steel, Mobarakeh Steel & Hormozgan Steel
WiperResolved

Stuxnet (Operation Olympic Games)

U.S. and Israeli intelligence services jointly developed and deployed Stuxnet โ€” the first widely-known cyber weapon to cause physical damage. The worm targeted Iran's Natanz uranium enrichment facility and destroyed approximately 1,000 IR-1 centrifuges over 2009โ€“2010.

Victim
Natanz uranium enrichment facility (Iran)
Loss
$100.0M