Chinese hackers infiltrated the network of NXP, a major Dutch semiconductor maker, for more than two years to steal chip designs, according to a report from Dutch daily newspaper NRC (via Tom’s Hardware).
According to the report, Chimera, a hacking group with links to China and a history of targeting semiconductor companies, had access to NXP’s networks from late 2017 to early 2020.
Despite Chimera’s long-term exposure to sensitive intellectual property information, NXP isn’t too bothered about the attackers going on to replicate its chips.
Chinese hacking group steals semiconductor IP info
NXP only became aware of the hack, says NRC, because the same hacking group also targeted KLM Airlines subsidiary Transavia in a similar manner. Again, Chimera has been reported to have targeted airline companies in the past, too.
It is believed that the hackers got into NXP’s network by using credentials that had previously been leaked and using brute force attacks.
The semiconductor has not publicly announced the attack, but it has confirmed that it took place. This is because it’s not particularly bothered and doesn’t think it’s something the public needs to know about – because the data is so complex, NXP doesn’t think hackers could replicate its designs anyway.
Following the attack, the Dutch chipmaker has now taken measures to tighten its security in order to prevent future and more serious attacks.
While it looks like there have been no serious direct consequences on this occasion, indirect consequences could continue to play out.
NXP, for example, provides secure elements for the iPhone including the parts that underpin Apple Pay. Apple is a company that plays its cards very close to the chest, so such a leak could have an impact on the deal between the two companies in the future.
More from TechRadar Pro
Via Tom’s Hardware