Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Logo

[Apple Data, Additional evidence (Apple Watch) pack-2]Luxshare Precision Industry Co. Ltd.

www.luxshare-ict.com

Group: Ransomhouse

Discovered by ransomware.live: 2026-02-04

Estimated attack date: 2025-12-15

Country: CN

Description:

Luxshare Precision Industry Co., Ltd. (Luxshare-ICT) is a leading global manufacturer of precision components, cable assemblies, connectors, and integrated interconnect solutions, primarily serving the electronics industry. The company's core business segments include consumer electronics (accounting for approximately 79% of revenue), communications and data centers (high-speed interconnects for AI infrastructure), and automotive electronics (wiring harnesses and intelligent systems). Key clients feature Apple as the primary partner (contributing over 70% of revenue through supplies for iPhones, AirPods, Apple Watch, and Vision Pro), alongside NVIDIA, Meta, Qualcomm, and major automakers.Headquartered in Dongguan, China, Luxshare employs over 278,000 people worldwide and operates production facilities across China, Vietnam, India, and Europe.
Infostealer activity detected by HudsonRock

Compromised Employees: 65

Compromised Users: 443

Third Party Employee Credentials: 50

External Attack Surface: 61

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse@35.cn
MX Records
  • luxshareict-com02b.mail.protection.outlook.com.
TXT Records
  • v=spf1 include:spf.protection.outlook.com include:spf.luxshare.com.cn mx:merry.com.tw mx a ip4:218.4.148.10/29 ip4:36.26.44.83 ip4:113.195.181.13 ip4:60.251.237.76 ip4:27.67.53.247 ip4:118.163.9.181 ip4:153.35.214.184/29 ip4:123.127.176.17 -all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.