skip to Main Content
Hackers Steal Chip Designs From Dutch Semiconductor Company, NXP

Hackers Steal Chip Designs From Dutch Semiconductor Company, NXP

Chimera, a Chinese-linked hacker group, infiltrated the network of the Dutch semiconductor giant NXP and had access for over two years from late 2017 to the beginning of 2020, reports NRC. 

Source: Toms Hardware


The hackers reportedly stole intellectual property, including chip designs — however, the full extent of the theft is yet to be disclosed. NXP is the largest chipmaker in Europe, and the scale and extent of the reported attack is shocking. 

According to the report, the breach remained undetected for roughly two and a half years while the hackers lurked in the company’s network — the breach was only discovered because a similar attack occurred on the Dutch airline Transavia, a subsidiary of KLM. Hackers accessed Transavia’s reservation systems in September 2019.

An investigation of the Transavia hack uncovered communications with NXP IPs, which led to the discovery of the NXP hack. The attack bears all of the hallmarks of the Chimera hacking group, including the use of its ChimeRAR hacker tool.

To break into NXP, the hackers initially used credentials from previous data leaks on platforms like LinkedIn or Facebook and then used brute force attacks to guess the passwords. They also bypassed double authentication measures by altering phone numbers.

The hackers were patient, only checking for new data to steal every few weeks, and then snuck the data out using encrypted files uploaded to online cloud storage services, like Microsoft’s OneDrive, Dropbox, and Google Drive.

NXP is a major player in the global semiconductor market and has been particularly influential after it acquired Freescale (an American company) in 2015. NXP is known for developing secure Mifare chips for public transportation in the Netherlands, but also for secure elements for the iPhone — Apple’s Pay, in particular.

However, even though it confirmed the theft of its intellectual property, NXP says that the breach did not result in material damage — saying that the data stolen is complex enough that it can’t be easily used to replicate designs. As such, the company didn’t see the need to inform the general public, reports NRC.

Following the breach, NXP reportedly took measures to boost its network security. The company enhanced its monitoring systems and imposed stricter controls on data accessibility and transfer within the company.

These steps aim to safeguard against similar incidents in the future to avoid breaches, safeguard the company’s valuable intellectual assets, and maintain the integrity of its network. It is anyone’s guess how many other semiconductor companies have been hacked yet haven’t disclosed those breaches to the public.

 

What You Missed:

 

Universal Robots Launches 30 Kg Cobot
Charlie Munger, The Man Who Saw BYD’s Potential Passes At 99
LG Energy Solutions And SK On Lay Off Workers As EV Battery Market Slows
Korea Loses Semiconductor Talent Pool To China
Slaughtering Undone, Sam Altman Resumes Chapter
OpenAI Slaughters Its Golden Goose — Sam Altman
Thailand Shaves Subsidies for EVs As Sales Boom
Embracing Change: Proactive Strategies For Success In The Rapidly Evolving Power Tool Industry

A*Star Launches EV Battery Testing And Disassembly Line
Micron Starts New Assembly And Test Facility In Malaysia

 

 

 

WANT MORE INSIDER NEWS? SUBSCRIBE TO OUR DIGITAL MAGAZINE NOW!

 

CONNECT WITH US:  LinkedIn, Facebook, Twitter

 

Letter to the Editor
Do you have an opinion about this story? Do you have some thoughts you’d like to share with our readers? APMEN News would love to hear from you!

 

 

Email your letter to the Editorial Team at [email protected]

Panasonic To Give Up Struggling Auto Parts Arm For EV
Apple To Move Key iPad Engineering Resources To Vietnam
Back To Top