"On Monday, June 22, 2026, ransomware-originated damage was confirmed in part of Nidec Chaun Choung Technology’s server," Nidec says.
Nidec Chaun Choung Technology: what Nidec reported
Nidec Corporation disclosed last week that its Taiwanese subsidiary, Nidec Chaun Choung Technology, was compromised by ransomware. The company said it took “emergency measures, including shutting down the affected server and network,” to prevent the spread of the damage. Nidec also disclosed a “possibility of information leak,” while noting that “no personal or confidential information has been confirmed to have been leaked online.”
Blackfield’s demands and leak threat
The ransomware group Blackfield claimed responsibility and set a timetable that gave Nidec “more than 15 days” to respond and negotiate under threat of publishing or selling the allegedly stolen data. Blackfield posted a demand: a $2,000,000 payment to delete the data. The actor offered alternatives — $5,000 to extend the deadline by one day, or an immediate download of the data for $400,000 — and leaked sample files showing file structures and various documents as proof. BleepingComputer reported that it could not confirm the validity of those leaked samples.
Operational footprint and potential business impact
Nidec is a major global manufacturer of electric motors, with annual revenue of $17.2 billion, about 100,000 employees, and operations in more than 40 countries through manufacturing facilities and subsidiaries. The company produces motors ranging from micro-precision units for phones and hard drives to heavy-duty motors for robotics, elevators, and large HVAC systems, and it designs motors for electric vehicles, electric power steering systems, and advanced driver-assistance systems. Nidec said it is investigating how production, shipping, and other business operations might be impacted by the incident, while expressing that it does not expect the fallout to extend to other Nidec Corporation or Nidec Group companies.
Context from Nidec’s prior ransomware incident in 2024
This is not the first time ransomware has targeted a Nidec affiliate. In October 2024, Nidec reported a ransomware attack on its Vietnam-based Nidec Precision division that exposed more than 50,000 sensitive files. That earlier incident was claimed by both the 8Base and Everest gangs, who attempted separate extortion demands against Nidec.
What this means for technologists, Nidec operations, and threat actors
- Technologists and security teams: The presence of leaked sample files and BleepingComputer’s inability to verify their authenticity mean security teams will likely prioritize validation of any exposed data and forensic confirmation of what was accessed. Nidec’s shutdown of the affected server and network is the concrete containment step already taken.
- Nidec operations and customers: Production, shipping, and other business functions cited by Nidec are the immediate points of concern; the company’s stated investigation will determine whether and how those operational processes are affected, even as Nidec says it does not expect the incident to spread across its other group companies.
- Adversaries and competing extortion groups: Blackfield’s structured demand — a $2 million deletion price, a $400,000 immediate-download option, and a $5,000-per-day extension fee — and the earlier 2024 claims by 8Base and Everest underline that multiple actors have targeted Nidec assets in different incidents, each using public leak-threat tactics to press for payment.
Blackfield’s public posture — posting samples and specific, tiered pricing — places the dispute in the familiar theater of ransomware negotiation: evidence presented for credibility, fixed deadlines to force decisions, and multiple price points aimed at extracting payment. Nidec has taken network containment steps and is investigating operational impacts, and it has stated there is a possibility of information leakage while no personal or confidential information has been confirmed online. Whether the leaked samples will be validated, whether data will appear publicly, and how Nidec’s investigation will map to production and shipping outcomes are the near-term facts still to be resolved.
