LG battery subsidiary says ransomware attack targeted overseas facility

One of the world’s largest battery makers confirmed it was affected by ransomware following claims made by a cybercriminal gang that the FBI spotlighted last week.

A spokesperson for South Korea-based LG Energy Solution said the company recently identified an attack and is currently implementing security measures to address the situation. 

“The attack targeted a specific overseas facility, and we have confirmed that the headquarters and other facilities were not affected,” the spokesperson said. The company has facilities on multiple continents, including eight in North America.

“The impacted facility is now operating normally after the recovery measures were taken, and we are conducting security operations and investigations as a precautionary measure.”

The spokesperson did not respond to further questions about the nature of the incident. 

LG Energy Solution is a subsidiary of Korean multinational LG and earned $17.5 billion in 2024 through its work supplying batteries to car makers. 

On Monday, the Akira ransomware gang added the company to its leak site, claiming to have stolen 1.7 terabytes of data that included corporate documents, databases of employee information and more. 

On November 13, the FBI released an updated notice on the ransomware gang, warning that the hackers are believed to have claimed more than $244 million in ransomware proceeds.

“Akira ransomware doesn’t just steal money – it disrupts the systems that power our hospitals, schools, and businesses,” said FBI Cyber Division Assistant Director Brett Leatherman.

The advisory warned that the group was targeting manufacturing companies and several other industries. 

The evolving prominence of battery manufacturers has made them targets for ransomware gangs. German battery manufacturer Varta AG was knocked offline for weeks by a cyberattack last year.

Hackers stole $60 million from one of the leading suppliers of a key material used to make batteries in 2024.