GlobalFoundries is a semiconductor foundry with plants located worldwide. They are fairly well known for their contribution in engineering integrated circuits for semiconductor companies like Broadcom and STMicroelectronics.
Just recently, GlobalFoundries confirmed that their Essex Junction plant was infected by a computer virus via manufacturing tools. The tools were taken down in response to the virus in order to prevent further spreading. Fortunately, A few tools have already been successfully reinstated.
Jason Gorss, GlobalFoundries’ Director of Corporate Communications, released an official statement on the cyber-attack:
“I can confirm a small number of fab tools were impacted by a computer virus. As per our security measures, we took these tools offline to isolate them and avoid any further spread. Some of these tools have already been brought back up and the rest are being addressed now.”
The plant is currently working with several federal agencies to fulfill a $100 million contract that will provide microelectronics to a variety of different departments. Officials have yet to clarify if the virus affected the tools involved in the contract – or if the virus was specifically created to target GlobalFoundries.
Furthermore, this cyber-attack is not completely unexpected. Digital VPR discusses the possibility of prevention,
“A 2012 report from the Government Accounting Office warned that vulnerabilities in the supply chain for “National Security-Related Agencies” could jeopardize those agencies’ work.
The report said potential attackers “include corporate spies, corrupt government officials, cyber vandals, disgruntled employees, foreign military, government agents or spies, radical activists, purveyors of counterfeit goods, or criminals.”
Hopefully other establishments will learn from GlobalFoundries’ mistakes. In fact, there have been so many mistakes to learn from lately that the possibilities are never-ending. Cyber security teams don’t have any more excuses. The information is plentiful and readily available.
The only thing left is for authorities and technology experts to utilize the information we have. We need to prepare for the future as much as we virtually can.