When was the ransomware attack on Sheng Yu Steel discovered?

The incident was initially discovered on April 8, 2025. The ransomware attack targeted Sheng Yu Steel's IT infrastructure, with cybercriminals potentially gaining access to sensitive corporate data and employee information.

Who is responsible for the Sheng Yu Steel ransomware attack?

While the company has not disclosed the attacking group, breach monitoring services are attributing the attack to the 'Underground' ransomware gang.

What type of data was potentially compromised in the attack?

Exposed data includes personal employee information and confidential data, corporate operational and business information, internal company communications and documentation, and potentially sensitive customer and supplier information.

How many individuals were affected by the Sheng Yu Steel breach?

The number of affected individuals has not been disclosed by Yodogawa Steel Works or Sheng Yu Steel. The company has not provided specific figures on how many employees, customers, or suppliers may have had their information compromised.

What is the Underground ransomware gang?

The Underground is a ransomware gang that has been attributed to this attack by breach monitoring services. While Yodogawa Steel Works has not officially confirmed the attribution, security researchers believe this group was responsible for targeting Sheng Yu Steel's systems.

What industries does this attack affect?

This attack affects the steel and manufacturing industry, specifically targeting a Taiwanese steel company that is part of a larger Japanese steel manufacturing group with operations across Asia. It highlights cybersecurity risks facing international manufacturing operations.

What should other manufacturing companies learn from this incident?

This incident demonstrates the importance of securing IT infrastructure across international subsidiaries, implementing robust cybersecurity measures for manufacturing operations, having incident response plans ready, and engaging external cybersecurity experts quickly when breaches occur. Companies should also ensure coordination with local authorities in countries where subsidiaries operate.

Incident

Japanese steel manufacturer Yodogawa reports ransomware attack on Taiwanese subsidiary

Q: What happened to Yodogawa Steel Works' subsidiary?

Yodogawa Steel Works Ltd. disclosed that its Taiwanese subsidiary Sheng Yu Steel Co., Ltd. was hit by a ransomware attack that potentially compromised personal and confidential information. The incident targeted Sheng Yu Steel's IT infrastructure.

Q: What is Yodogawa Steel Works and where does it operate?

Yodogawa Steel Works is a Japanese company that operates multiple international subsidiaries across Asia, including significant operations in Taiwan, China, and Thailand. Sheng Yu Steel Co., Ltd. is their Taiwanese subsidiary.

Q: Are authorities investigating the Sheng Yu Steel ransomware attack?

Yes, local Taiwanese authorities have launched a formal investigation into the cybersecurity incident and are working closely with Yodogawa Steel Works and Sheng Yu Steel to understand the attack and assess the full scope of the data compromise.

published: June 18, 2025

Learn More

Yodogawa Steel Works Ltd. has disclosed that its Taiwanese subsidiary Sheng Yu Steel Co., Ltd. was hit by a ransomware attack that potentially compromised personal and confidential information. Yodogawa Steel Works operates multiple international subsidiaries across Asia, including significant operations in Taiwan, China, and Thailand.

The incident was initially discovered on April 8, 2025. The ransomware attack targeted Sheng Yu Steel's IT infrastructure, and cybercriminals potentially gained access to sensitive corporate data and employee information.

The company has not disclosed the attacking group but breach monitoring services are attributing the attack to the "Underground," ransomware gang.

Exposed data includes

Personal employee information and confidential data
Corporate operational and business information
Internal company communications and documentation
Potentially sensitive customer and supplier information

The number of affected individuals is not disclosed.

Yodogawa Steel Works engaged external cybersecurity experts to conduct a forensic investigation and implement enhanced security measures across its network infrastructure. Local Taiwanese authorities have launched a formal investigation into the cybersecurity incident, and are working closely with Yodogawa Steel Works and Sheng Yu Steel to understand the attack and assess the full scope of the data compromise.

Yodogawa Steel Works claims that the incident is expected to have negligible impact on the company's overall business performance and financial operations.

Japanese steel manufacturer Yodogawa reports ransomware attack on Taiwanese subsidiary

Read More
Tri-City Healthcare impacted by ransomware, shuts down emergency …
German aid organization Welthungerhilfe hit by ransomware attack
Embargo ransomware gang claims breach of American Associated …
Ransomware attack disrupts health system network in Micronesia's …
Avery Products Corporation reports data breach caused by …