Data I/O ransomware attack has forced the electronics manufacturer to take parts of its operational systems offline. The company reported the incident to the US Securities and Exchange Commission (SEC), revealing that some internal IT systems were affected by the attack.
Ransomware Attack and Immediate Response
Data I/O, a leading provider of programming systems and security technologies, was hit by a ransomware attack on August 16, 2025. The company quickly activated its incident response plan, taking several systems offline to contain the attack. It also began an investigation with the help of cybersecurity experts to assess the damage.
The ransomware attack temporarily disrupted operations, including communication, shipping, receiving, and manufacturing processes. While some systems are already back online, the company has not provided a clear timeline for full recovery.
Ongoing Investigation and Financial Impact
Data I/O confirmed that it will notify regulators and any affected individuals as required. However, the investigation is still ongoing to determine the full scope of the attack. In a filing with the SEC, Data I/O outlined the incident:
“On August 16, 2025, Data I/O Corporation (the “Company”) experienced a ransomware incident on certain of its internal IT systems. Upon discovery, the Company promptly activated its response protocols, took steps to secure its global IT systems, and implemented containment measures, including proactively taking certain platforms offline.”
While some systems are back online, Data I/O cautioned that recovery and advisory costs from the ransomware attack could materially impact its financial results and operations. The company is still unable to provide an exact timeline for full restoration of services.
Financial Concerns and Impact on Operations
Although the company stated that the ransomware attack has not yet had a material impact on its business operations, it warned that the situation could change. Data I/O highlighted that the costs related to recovery, including cybersecurity expert fees and system restoration, may significantly affect its financial condition.
“As of the date of this filing, the Incident does not appear to have had a material impact on the Company’s business operations; however, the full scope and impact of this Incident is not yet known and could result in a future determination that the incident either was not or has been material to the Company’s financial statements and results of operations,” the SEC filing concluded.
Conclusion
Data I/O ransomware attack serves as a reminder of the vulnerabilities even large manufacturers face in today’s digital environment. The company is working to restore affected systems while also addressing the financial and operational consequences of the attack. As investigations continue, the full scope of the incident’s impact remains unclear.
