Advantest Ransomware Attack Compromises Corporate Network and Triggers Investigation

What happened

Japanese semiconductor equipment manufacturer Advantest Corporation disclosed a ransomware attack after detecting unusual activity in its IT environment on February 15, 2026, which revealed unauthorized access to portions of its corporate network. The company confirmed that an intruder gained access and deployed ransomware, prompting immediate isolation of affected systems and engagement of third-party cybersecurity specialists to investigate and contain the incident. Advantest stated that customer or employee data may have been affected, though no confirmed data theft has been reported so far, and no ransomware group has claimed responsibility. The investigation remains ongoing, and the company said it will notify affected individuals if data exposure is confirmed. 

Who is affected

Advantest Corporation, its internal systems, and potentially its customers and employees are affected, as unauthorized access to the corporate network may have exposed sensitive company and user data. 

Why CISOs should care

The incident highlights the risks ransomware attacks pose to semiconductor and technology manufacturers, where compromise of corporate networks can expose sensitive operational, employee, and customer information. 

3 practical actions

• Isolate affected systems immediately. Advantest isolated compromised systems to contain the ransomware incident. 
• Engage external cybersecurity specialists. The company brought in third-party experts to investigate and mitigate the attack. 
• Notify affected users if exposure is confirmed. Advantest stated it will inform impacted individuals if customer or employee data was compromised.