Languagesx
English Deutsch Việt Nam 한국 日本 ไทย
Subscribe
Home Chinese-linked hackers breach NXP, Europe’s largest chipmaker

Chinese-linked hackers breach NXP, Europe’s largest chipmaker

hacker

NXP, Europe’s largest semiconductor manufacturer, fell victim to a sophisticated cyberattack by Chimera, a hacker group with ties to China. According to Tom’s Hardware, the breach, which lasted from late 2017 to early 2020, was only discovered following a related attack on the Dutch airline Transavia.

For over two years, Chimera hackers covertly accessed NXP’s network, undetected. Their presence came to light only after an investigation into a cyberattack on Transavia’s reservation systems in September 2019, which revealed communications with NXP IPs. This breach is characterized by the use of Chimera’s signature hacking tool, ChimeRAR.

The hackers initially exploited credentials from previous data leaks on platforms like LinkedIn or Facebook. They then launched brute force attacks to decipher passwords and ingeniously bypassed double authentication by altering phone numbers. Demonstrating patience, they periodically checked for new data to steal, discreetly exfiltrating it via encrypted files uploaded to cloud storage services like Microsoft’s OneDrive, Dropbox, and Google Drive.

NXP’s role in the global market

NXP, a pivotal player in the global semiconductor industry, gained significant influence after acquiring the American company Freescale in 2015. The company has earned renown for developing secure Mifare chips for the Netherlands’ public transportation and secure elements for Apple’s iPhone, especially for Apple Pay.

Despite acknowledging the intellectual property theft, NXP minimized the breach’s impact, claiming the stolen data’s complexity hinders design replication. Consequently, the company did not feel compelled to inform the public. Following the breach, NXP strengthened its network security, upgrading monitoring systems and tightening internal data access and transfer controls.

This incident highlights semiconductor industry IP security risks and possible undisclosed breaches in other firms. The theft’s scope and long-term impact are unclear, underscoring the need for stronger industry-wide cybersecurity.

About ReadWrite’s Editorial Process

The ReadWrite Editorial policy involves closely monitoring the tech industry for major developments, new product launches, AI breakthroughs, video game releases and other newsworthy events. Editors assign relevant stories to staff writers or freelance contributors with expertise in each particular topic area. Before publication, articles go through a rigorous round of editing for accuracy, clarity, and to ensure adherence to ReadWrite's style guidelines.

tags
Maxwell Nelson
Tech Journalist

Maxwell Nelson, a seasoned journalist and content strategist, has contributed to industry-leading platforms, weaving complex narratives into insightful articles that resonate with a broad readership.

Related News

Crazy Taxi HQ in emulation
With the help of AI new updates to PlayStation 2 and Dreamcast emulation are giving a new lease of life to some of the best games ever made
Paul McNally
Moza Racing Vision GS steering wheel
Moza Racing launches Vision GS steering wheel, first shown in 2023 and desired ever since
Paul McNally
All the Fortnite Cursed Sails quests
Fortnite Cursed Sails: How to get both Jack Sparrow skins
Paul McNally
The Tesla Cybertruck has launched with a base price of $61,000
Elon’s Cybertruck speeds into Fortnite according to leak
Paul McNally
Glasgow indie games festival
Which games to look out for from Glasgow Indie Games Festival
Ali Rees

Most Popular Tech Stories

Latest News

multiple browser windows open with holographic background and a big digital padlock in the foreground, poster
Security

The 5 best password managers for 2024
James Jones2 hours

Not having a password manager and reusing passwords is like using the same key for your front door, back door, windows, cars, shed, safe, and anything and everything else that...

Popular TopicsArrow right.svg

AI
AI
AI
AR / VR
AR / VR
AR / VR
Cryptocurrency
Cryptocurrency
Cryptocurrency
Gaming
Gaming
Gaming
Smartphone
Smartphone
Smartphone
Gambling
Gambling
Gambling
Wearables
Wearables
Wearables
Web
Web
Web

Get the biggest tech headlines of the day delivered to your inbox

    By signing up, you agree to our Terms and Privacy Policy. Unsubscribe anytime.

    Tech News

    Explore the latest in tech with our Tech News. We cut through the noise for concise, relevant updates, keeping you informed about the rapidly evolving tech landscape with curated content that separates signal from noise.

    In-Depth Tech Stories

    Explore tech impact in In-Depth Stories. Narrative data journalism offers comprehensive analyses, revealing stories behind data. Understand industry trends for a deeper perspective on tech's intricate relationships with society.

    Expert Reviews

    Empower decisions with Expert Reviews, merging industry expertise and insightful analysis. Delve into tech intricacies, get the best deals, and stay ahead with our trustworthy guide to navigating the ever-changing tech market.