Last updated 3 weeks ago
AkzoNobel, a multinational paint and coatings manufacturer, confirmed a cyberattack targeting one of its U.S. operational sites. The company disclosed the breach in March 2026, though the internal discovery timeline remains unspecified. The incident impacted network infrastructure at a specific U.S. location, but the scope of data exposure or number of affected systems has not been quantified.
The attack involved unauthorized access to the network of a U.S. site, though the specific initial access vector, exploitation techniques, and data exfiltration methods were not detailed in the confirmation. No threat actor attribution was provided, and the company has not specified which data types, if any, were compromised during the intrusion.
AkzoNobel has publicly confirmed the incident but has not released information regarding containment measures, remediation milestones, regulatory notifications, or any potential ransom demands. The breach notification status for affected parties remains unclear.
Hackers breached the network of one of its U.S. sites
The Anubis ransomware group claimed responsibility for the attack and stated they stole data, providing new attribution and confirmation of data exfiltration.
The breach at AkzoNobel's U.S. site highlights the need for manufacturing firms with distributed global operations to implement consistent network segmentation and access controls across all locations. The incident demonstrates that even a single-site compromise can represent a significant operational risk, requiring robust detection capabilities and incident response plans tailored to industrial environments.
Sign in to join the discussion.
Company
Industry
Location
Disclosed
Records Affected
Attack Vector