Semiconductor services firm Trio-Tech says one of its subsidiaries in Singapore fell victim to a ransomware attack.
The incident, the company said in a filing with the Securities and Exchange Commission, occurred on March 11 and resulted in the encryption of certain files within its network.
The subsidiary, it told the SEC, immediately activated response protocols, proactively taking its systems offline to contain the incident.
Additionally, the subsidiary launched an investigation into the attack with help from third-party cybersecurity professionals and notified law enforcement.
“The subsidiary is taking steps to contain the incident, restore affected systems, and enhance monitoring across its network environment. The subsidiary is in the process of notifying affected parties as required by applicable law,” the company said.
Initially, Trio-Tech says, the incident was not considered to have a material impact, but the attackers published certain data stolen from its network, and “management concluded that the incident may constitute a material cybersecurity event.”
The company says its investigation into the incident is ongoing and that it has yet to determine the full scope of the potentially affected data.
“The subsidiary is also working closely with its cyber insurance provider to support the investigation, remediation, and potential claims process,” Trio-Tech said.
The company has not shared details on the threat actor responsible for the attack, but the Gunra ransomware group added Trio-Tech to its Tor-based leak site.
SecurityWeek has emailed Trio-Tech for additional information on the attackers’ claims and will update this article if the company responds.
California-based Trio-Tech International provides semiconductor back-end solutions (SBS), including manufacturing, testing, and distribution services, as well as industrial electronic equipment. The company has offices in the US, China, Malaysia, Singapore, and Thailand.
Related: Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks
Related: Russian Ransomware Operator Pleads Guilty in US
Related: Mississippi Hospital System Closes All Clinics After Ransomware Attack
Related: BeyondTrust Vulnerability Exploited in Ransomware Attacks
