German industrial engineering and steel production giant Thyssenkrupp has again confirmed being targeted by cybercriminals.
The company told SecurityWeek that ‘organized crime’ is believed to be behind the attack.
“Parts of the Materials Services and Corporate segment of Thyssenkrupp are currently affected. The possibility of the other segments and business units being affected can be ruled out at this time,” a spokesperson of Thyssenkrupp Materials Services said in an emailed statement.
According to the same statement, the company’s IT security team detected the incident at an early stage and the attackers did not manage to cause any damage. In addition, there is no evidence that data has been stolen or modified.
“An interdisciplinary crisis team has been set up and is working together with the group’s IT security to limit the attack and ideally end it as quickly as possible,” Thyssenkrupp said, adding that authorities have been notified.
The company would not say whether the attack was conducted by a known ransomware group.
SecurityWeek has checked the websites of several major ransomware groups, but found no mention of Thyssenkrupp at the time of writing.
This is not the first time Thyssenkrupp has been targeted in a cyberattack. In 2016, the company said it was targeted by hackers believed to be located in Southeast Asia, with the goal of stealing industrial secrets.
The company was also targeted by several ransomware groups in the past few years, including the notorious Netwalker.
Thyssenkrupp would not be the only major German company hit by ransomware this year. The list also includes wind turbine giants Deutsche Windtechnik and Nordex Group, copper producer Aurubis, and car parts giant Continental.
In the case of Continental, the LockBit ransomware group claimed to have stolen 40 Gb of files and offered to sell the information for $50 million.
Related: German Finance Watchdog Sees ‘Very Big’ Risk of Cyberattacks
Related: Hackers Target German Branch of Russian Oil Giant Rosneft
Related: Germany: 2 Oil Storage and Supply Firms Hit by Cyberattack

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.
More from Eduard Kovacs
- Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards
- Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery
- Industrial Giant ABB Confirms Ransomware Attack, Data Theft
- Zyxel Firewalls Hacked by Mirai Botnet
- New Russia-Linked CosmicEnergy ICS Malware Could Disrupt Electric Grids
- Drop in Insider Breaches Drives Decline in Intrusions at OT Organizations
- Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances
- OAuth Vulnerabilities in Widely Used Expo Framework Allowed Account Takeovers
Latest News
- Chrome 114 Released With 18 Security Fixes
- Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards
- Breaking Enterprise Silos and Improving Protection
- Spyware Found in Google Play Apps With Over 420 Million Downloads
- Millions of WordPress Sites Patched Against Critical Jetpack Vulnerability
- Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery
- PyPI Enforcing 2FA for All Project Maintainers to Boost Security
- Personal Information of 9 Million Individuals Stolen in MCNA Ransomware Attack
