Connect with us

Hi, what are you looking for?



German Steelmaker Thyssenkrupp Confirms Ransomware Attack

German steelmaking conglomerate Thyssenkrupp confirms one of its automotive units was disrupted by a ransomware attack.

German industrial engineering and steel production conglomerate Thyssenkrupp on Thursday confirmed one of its automotive units was disrupted by a ransomware attack.

Thyssenkrupp ransomware attackThe confirmation follows a published report in The Wall Street Journal that the steelmaker was forced to take a number of computer systems offline after detecting signs of a malicious intrusion.

“Yes, it was a ransomware attempt which failed,” a Thyssenkrupp spokesperson said in a statement to SecurityWeek.

The data extortion ransomware attack was aimed at the multinational company’s Automotive Body Solutions business and halted factory production work.  

Thyssenkrupp described the situation as “under control” and said it was still able to supply customers.

Thyssenkrupp, which maintains headquarters in Duisburg and Essen in Germany,  is one of the world’s largest  steel producers.  The company is divided into 670 subsidiaries worldwide.   

Ransomware attacks against mega-corporations are becoming commonplace and the Thyssenkrupp intrusion is another sign that industrial and manufacturing entities are lucrative targets. 

Just recently, Swiss industrial giant ABB was compromised in a ransomware attack that included the hijack and exfiltration of corporate data.

Related: ​​Thousands of Industrial Firms Targeted in Attacks Using Short-Lived Malware

Advertisement. Scroll to continue reading.

Related: Many Ransomware Attacks on OT Organizations Involved Ryuk

Related: Industrial Giant ABB Confirms Ransomware Attack, Data Theft

Related: BlackCat Ransomware Targets Industrial Companies

Written By


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.


People on the Move

Kim Larsen is new Chief Information Security Officer at Keepit

Professional services company Slalom has appointed Christopher Burger as its first CISO.

Allied Universal announced that Deanna Steele has joined the company as CIO for North America.

More People On The Move

Expert Insights

Related Content


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Patch Tuesday: Microsoft calls attention to a series of zero-day remote code execution attacks hitting its Office productivity suite.


A SaaS ransomware attack against a company’s Sharepoint Online was done without using a compromised endpoint.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.