HQ/EMEAFind out how we can help your business
Nucor Corporation, one of the most prominent steel producers in the United States, has reported a cybersecurity incident that forced portions of its network offline and triggered containment measures.
Based on reports, the data breach led to the temporary suspension of production at multiple facilities, although the full extent of the impact on the company’s operations remains unclear.
Threat actors may have seen potential profit from targeting the entity since it is one of the key players in the U.S. steel industry and a major scrap recycler in North America. In addition, Nucor is a primary supplier of reinforcing bars used extensively in national infrastructure projects, including buildings, bridges, and roads.
The company currently employs more than 32,000 individuals across facilities in the United States, Mexico, and Canada. Moreover, it recorded $7.83 billion in revenue in the first quarter of the year.
The incident was disclosed through an 8-K filing given by the affected entity to the U.S. Securities and Exchange Commission (SEC). According to the filing, the company identified unauthorised third-party access to certain information technology systems.
Nucor insisted that it took the necessary steps to mitigate the impact of the alleged cyberattack after discovering it.
Upon detection, Nucor claimed that it activated its incident response plan, took potentially affected systems offline, and implemented various containment, remediation, and recovery measures.
It immediately notified law enforcement and engaged with external service providers to support them with the ongoing investigation. Still, the attack affected and halted some production operations, but efforts are underway to resume normal operations.
As of now, no information has been released regarding the nature of the attack, such as whether it involved data exfiltration or system encryption.
There is also no known ransomware groups have yet to claim responsibility for the incident. Hence, the identity of the perpetrators remains a mystery.
Concerned parties have already reached out to Nucor for further comment, but the company has not yet provided additional details about the cybersecurity issue.
