Blackfield Ransomware Demands $2M from Nidec Corporation

Post Views: 1

Blackfield ransomware demands $2 million from Nidec Corporation

Nidec Corporation Overview

Blackfield ransomware group has demanded a $2 million payment from Nidec Corporation, a major Japanese manufacturer specializing in electronic components for automotive and computing industries. The company is a leading producer of motors ranging from micro-precision units used in mobile devices and storage drives to heavy-duty motors for robotics, elevators, and large HVAC systems. It also develops motors for electric vehicles, electric power steering systems, and advanced driver-assistance technologies. With annual revenue of $17.2 billion, 100,000 employees, and operations across 40 countries through manufacturing sites and subsidiaries, Nidec is a global leader in electric motor production.

Ransomware Attack Details

A statement from Nidec revealed that its Taiwanese subsidiary, Nidec Chaun Choung Technology, was targeted in a ransomware attack. On June 22, 2026, the company confirmed ransomware-related damage to part of the subsidiary’s server infrastructure. Nidec has not yet determined the full extent of operational impacts but stated that the incident is unlikely to affect other entities within the Nidec Corporation or Nidec Group. The company also noted the potential for data exposure, though no confirmed leaks of personal or confidential information have been reported.

Ransom Demands and Threats

Blackfield ransomware has claimed responsibility for the attack, giving Nidec more than 15 days to negotiate before threatening to publish or sell stolen data. The group is demanding a $2 million payment to delete the alleged data. An additional $5,000 would extend the deadline by one day for data disclosure. The threat actor’s communication includes a link to its extortion portal. BleepingComputer reported that Blackfield also released samples of data, including file structures and documents, to validate the breach, though the authenticity of these materials remains unverified.

Previous Attacks on Nidec

This incident marks the second ransomware attack on Nidec within 18 months. In October 2024, the company disclosed a breach targeting its Vietnam-based Nidec Precision division, which exposed over 50,000 sensitive files. That attack was attributed to the 8Base and Everest ransomware groups, which separately sought ransom payments.

Industry Implications and Recommendations

The breach highlights ongoing challenges in securing industrial and manufacturing networks, where ransomware actors increasingly exploit vulnerabilities in supply chains and subsidiary operations. Organizations are advised to conduct thorough risk assessments and implement layered security measures to mitigate such threats.

“Nidec has not yet determined the full extent of operational impacts but stated that the incident is unlikely to affect other entities within the Nidec Corporation or Nidec Group.”

“BleepingComputer reported that Blackfield also released samples of data, including file structures and documents, to validate the breach, though the authenticity of these materials remains unverified.”