Blackfield Ransomware Gang Demands $2M from Nidec After Taiwan Subsidiary Breach
The Blackfield ransomware group has targeted Nidec Corporation, a global leader in electric motor manufacturing, demanding a $2 million ransom following a cyberattack on its Taiwanese subsidiary, Nidec Chaun Choung Technology. The breach was confirmed on June 22, 2026, prompting emergency measures, including server and network shutdowns to contain the damage.
Nidec, which generates $17.2 billion in annual revenue and employs 100,000 people across 40+ countries, specializes in motors for automotive, computing, and industrial applications including electric vehicles and advanced driver-assistance systems. While the company acknowledged a "possibility of information leak," it has not confirmed whether personal or confidential data was exposed.
Blackfield set a 15-day deadline for negotiations, threatening to publish or sell the stolen data if unpaid. The group offered a $5,000-per-day extension or immediate data access for $400,000. Samples of leaked files were posted to validate the breach, though their authenticity remains unverified.
This incident follows a 2024 ransomware attack on Nidec’s Vietnam-based Nidec Precision division, where 8Base and Everest gangs separately extorted the company after exposing 50,000+ sensitive files. Nidec stated the latest breach is not expected to impact other group operations, though investigations into potential disruptions to production and shipping are ongoing.
Nidec Corporation Global cybersecurity rating report: https://www.rankiteo.com/company/nidec-corporation-global
"id": "NID1782815047",
"linkid": "nidec-corporation-global",
"type": "Ransomware",
"date": "6/2026",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'industry': 'Electric motor manufacturing',
'location': 'Global (Headquartered in Japan)',
'name': 'Nidec Corporation',
'size': '100,000 employees, $17.2 billion annual '
'revenue',
'type': 'Corporation'},
{'industry': 'Electric motor manufacturing',
'location': 'Taiwan',
'name': 'Nidec Chaun Choung Technology',
'type': 'Subsidiary'}],
'data_breach': {'data_exfiltration': 'Samples of leaked files posted'},
'date_detected': '2026-06-22',
'date_publicly_disclosed': '2026-06-22',
'description': 'The Blackfield ransomware group has targeted Nidec '
'Corporation, demanding a $2 million ransom following a '
'cyberattack on its Taiwanese subsidiary, Nidec Chaun Choung '
'Technology. The breach was confirmed on June 22, 2026, '
'prompting emergency measures, including server and network '
'shutdowns to contain the damage. Blackfield set a 15-day '
'deadline for negotiations, threatening to publish or sell the '
'stolen data if unpaid.',
'impact': {'data_compromised': 'Possibility of information leak',
'operational_impact': 'Potential disruptions to production and '
'shipping',
'systems_affected': 'Servers and networks of Nidec Chaun Choung '
'Technology'},
'initial_access_broker': {'data_sold_on_dark_web': 'Threatened to sell stolen '
'data'},
'investigation_status': 'Ongoing',
'motivation': 'Financial gain',
'ransomware': {'data_exfiltration': 'Threatened to publish or sell stolen '
'data',
'ransom_demanded': '$2,000,000',
'ransomware_strain': 'Blackfield'},
'references': [{'source': 'Cyber Incident Description'}],
'response': {'containment_measures': 'Server and network shutdowns',
'incident_response_plan_activated': 'Emergency measures '
'including server and '
'network shutdowns'},
'threat_actor': 'Blackfield ransomware group',
'title': 'Blackfield Ransomware Gang Demands $2M from Nidec After Taiwan '
'Subsidiary Breach',
'type': 'Ransomware'}