Electronics manufacturer **Data I/O Corporation** suffered a **ransomware attack** on **August 16, 2025**, forcing the company to take critical operational systems offline. The incident disrupted internal and external communications, shipping, receiving, manufacturing production, and support functions. While some systems have been partially restored, the full recovery timeline remains uncertain. The attack triggered an ongoing investigation with cybersecurity experts to assess the scope and impact.The company filed a **FORM 8-K report** with the **SEC**, acknowledging potential material financial consequences, including advisory and restoration costs. Although the immediate operational impact was deemed non-material at the time of filing, the long-term effects—such as financial losses, reputational damage, and regulatory notifications—are still under evaluation. The attack highlights vulnerabilities in IT infrastructure, particularly for a firm specializing in **flash memory programming and IoT/automotive device security**.
TPRM report: https://www.rankiteo.com/company/data-io
"id": "dat753082525",
"linkid": "data-io",
"type": "Ransomware",
"date": "8/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'electronics manufacturing (programming '
'systems for flash memory, '
'microcontrollers, and logic devices)',
'location': 'global (HQ likely in USA)',
'name': 'Data I/O Corporation',
'type': 'public company'}],
'customer_advisories': 'planned (as required)',
'date_detected': '2025-08-16',
'date_publicly_disclosed': '2025-08-25',
'description': 'Electronics manufacturer Data I/O reported a ransomware '
'attack to the US Securities and Exchange Commission (SEC), '
'forcing the company to take operational systems offline. The '
'attack disrupted internal/external communications, shipping, '
'receiving, manufacturing production, and support functions. '
'The company activated its incident response plan and is '
'working with cybersecurity experts to investigate and restore '
'affected systems. The full scope and financial impact remain '
'under assessment, but recovery costs are expected to '
'materially affect operations.',
'impact': {'downtime': 'ongoing (partial restoration in progress, no timeline '
'for full recovery)',
'operational_impact': 'temporary disruption of communications, '
'shipping, receiving, manufacturing, and '
'support functions',
'revenue_loss': 'potential material impact (under assessment)',
'systems_affected': ['internal IT systems',
'communication systems',
'shipping/receiving systems',
'manufacturing production systems',
'support functions']},
'investigation_status': 'ongoing (scope and impact not yet fully determined)',
'ransomware': {'data_encryption': True},
'references': [{'date_accessed': '2025-08-25', 'source': 'SecurityAffairs'},
{'date_accessed': '2025-08-25',
'source': 'SEC FORM 8-K filing by Data I/O Corporation'}],
'regulatory_compliance': {'regulatory_notifications': 'planned (as required)'},
'response': {'communication_strategy': 'SEC filing (FORM 8-K), regulatory '
'notifications planned',
'containment_measures': ['securing global IT systems',
'taking certain platforms offline',
'implementing mitigation measures'],
'incident_response_plan_activated': True,
'recovery_measures': 'restoring affected systems (ongoing)',
'third_party_assistance': True},
'stakeholder_advisories': 'SEC filing (FORM 8-K)',
'title': 'Ransomware attack on Data I/O Corporation disrupts operational '
'systems',
'type': 'ransomware'}