A ransomware attack attributed to the threat actor “thegentlemen” has targeted Dongguan HYX Industrial, a leading manufacturer with over 25 years of experience in digital accessories based in China, compromising its operations and data security. The incident underscores the ongoing cybersecurity risks faced by manufacturing companies in China. #China
Incident Details
- Victim: Dongguan HYX Industrial
- Sector: Manufacturing
- Country: CN
- Actor: thegentlemen
- Source: http://tezwsse5czllksjb7cwp65rvnk4oobmzti2znn42i43bjdfd2prqqkad.onion
- Discovered: 2026-01-16 15:55:28.496859
- Published: 2025-12-08 00:00:00.000000
Information
- HYX (Dongguan HYX Industrial Co., Ltd.) has been established since 1998, accumulating over 25 years of manufacturing experience.
- The company specializes in OEM & ODM services for 3C digital accessories, integrating research and development, design, production, and mass manufacturing.
- They serve global customers by providing stable quality, reliable capacity, and long-term manufacturing solutions.
- HYX holds multiple certifications including BSCI, ISO 14001, ISO/TS 16949, EICC, and ISO 9001.
- The company’s online presence includes their official website, manufacturer profile on Globalsources, Facebook page, and supplier profile on Freshdi.
- The ransomware attack targeted the company, with the actor identified as “thegentlemen”.
Disclaimer: This post is based on public claims made by the ransomware group "thegentlemen". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.