Luxshare Hit by RansomHub Ransomware Attack, Exposing Sensitive Tech Data
A major data breach at Luxshare, a critical Apple supplier based in China, has been claimed by the ransomware group RansomHub. The attackers allege they stole highly sensitive engineering and business data, including confidential information tied to Apple, Nvidia, LG, Tesla, and other tech giants.
According to posts on a dark web forum last month, the stolen data includes 3D CAD models, engineering designs, device repair details, shipping timelines, and PCB manufacturing files, with records dating from 2019 to December 2025. The breach may also contain personal identifiable information (PII) of employees involved in these projects, including Apple staff collaborating with Luxshare.
RansomHub accused Luxshare of attempting to conceal the incident internally, urging the company to engage with them to prevent public leaks. The group warned that the data could be used for reverse engineering, counterfeit production, or supply chain attacks, exposing hardware vulnerabilities and chip designs.
If confirmed, the breach could have severe implications for Luxshare and its partners, potentially enabling competitors to bypass years of R&D or exploit firmware weaknesses. Neither Luxshare nor Apple has publicly acknowledged the attack.
Luxshare plays a pivotal role in manufacturing key Apple products, including the iPhone, Apple Watch, and AirPods. The full extent of the breach remains unclear, but the exposed data could impact future product security and industry competition.
LUXSHARE-ICT CO., LTD. cybersecurity rating report: https://www.rankiteo.com/company/luxshare-ict-co
"id": "LUX1769023968",
"linkid": "luxshare-ict-co",
"type": "Ransomware",
"date": "6/2019",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 'Apple, Nvidia, LG, Tesla',
'industry': 'Technology/Manufacturing',
'location': 'China',
'name': 'Luxshare',
'type': 'Supplier'}],
'data_breach': {'data_exfiltration': 'Yes',
'file_types_exposed': ['CAD files',
'Design documents',
'Manufacturing files'],
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['3D CAD models',
'Engineering designs',
'Device repair details',
'Shipping timelines',
'PCB manufacturing files',
'PII']},
'description': 'A major data breach at Luxshare, a critical Apple supplier '
'based in China, has been claimed by the ransomware group '
'RansomHub. The attackers allege they stole highly sensitive '
'engineering and business data, including confidential '
'information tied to Apple, Nvidia, LG, Tesla, and other tech '
'giants. The stolen data includes 3D CAD models, engineering '
'designs, device repair details, shipping timelines, and PCB '
'manufacturing files, with records dating from 2019 to '
'December 2025. The breach may also contain personal '
'identifiable information (PII) of employees involved in these '
'projects, including Apple staff collaborating with Luxshare.',
'impact': {'brand_reputation_impact': 'Severe',
'data_compromised': '3D CAD models, engineering designs, device '
'repair details, shipping timelines, PCB '
'manufacturing files, PII of employees',
'identity_theft_risk': 'High',
'operational_impact': 'Potential reverse engineering, counterfeit '
'production, or supply chain attacks'},
'motivation': 'Financial gain, potential industrial espionage',
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'RansomHub'},
'references': [{'source': 'Dark web forum'}],
'threat_actor': 'RansomHub',
'title': 'Luxshare Hit by RansomHub Ransomware Attack, Exposing Sensitive '
'Tech Data',
'type': 'Ransomware'}