Brinztech Alert: Database of SEKISUI Aerospace (Tier-1 Supplier) is on Sale

Dark Web News Analysis

A threat actor on a known cybercrime forum is advertising the alleged sale of a 53 GB database belonging to SEKISUI Aerospace, a Tier-1 supplier for the aerospace and defense industry.

This claim, if true, represents a critical national security and industrial espionage breach. My analysis confirms SEKISUI Aerospace is a major manufacturer of composite components for clients like Boeing, Lockheed Martin, and the US Military.

The seller is asking for $75,000 for the dataset. The specific file types listed—STEP files (3D models), CATIA/SolidWorks drawings, and Bill of Materials (BOM) with Boeing part numbers—are the “crown jewels” of aerospace manufacturing.

Most critically, the data is explicitly marked “EXPORT CONTROLLED – EAR 9E991 / ITAR Technical Data.” This confirms the leak contains US military-grade technology restricted under the International Traffic in Arms Regulations (ITAR). The exposure of this data to foreign actors (state-sponsored groups from China or Russia often buy such data) would be a federal violation and a massive strategic loss.

This incident aligns with a broader 2025 aerospace supply chain campaign. It follows the September 2025 Everest ransomware attack on Collins Aerospace and the October 2025 breach of 3DCS (a Boeing/Airbus software supplier), indicating a coordinated effort to hollow out the Western aerospace defense base.

Key Cybersecurity Insights

This alleged data breach presents a critical threat to national defense and the aviation supply chain:

• Critical Intellectual Property Theft: The breach involves highly detailed technical drawings, 3D models, and manufacturing specifications for advanced aerospace components. This allows adversaries to reverse-engineer proprietary technology without R&D costs.
• Export Control Violations (ITAR): The alleged exfiltration of data marked “EAR 9E991 / ITAR” indicates severe violations of US export control laws. This triggers immediate mandatory reporting to the Department of State and could result in crippling fines or loss of defense contracts for SEKISUI.
• Severe Supply Chain Risk: As a Tier-1 supplier, a breach at SEKISUI compromises the integrity of the platforms they build for (e.g., commercial jets or military aircraft). Attackers could use this data to manufacture counterfeit parts or identify structural vulnerabilities in US aircraft.
• Espionage Potential: The availability of complete design files and tooling information could enable state-sponsored actors to gain a significant competitive advantage or introduce malicious modifications into the aerospace supply chain.

Mitigation Strategies

In response to this claim, SEKISUI and its prime contractors (Boeing, etc.) must take immediate action:

• Immediate Forensic Investigation & Data Verification: Launch an urgent investigation to confirm the breach scope. Verify precisely which ITAR-controlled files were exfiltrated to assess the national security damage.
• Robust Data Loss Prevention (DLP) and IRM: Implement advanced DLP solutions to detect the exfiltration of large CAD/STEP files. Use Information Rights Management (IRM) to encrypt sensitive designs at the file level, ensuring they cannot be opened even if stolen.
• Enhanced Supply Chain Audits: Prime contractors (like Boeing) must immediately audit SEKISUI’s security posture. This breach highlights the need for continuous monitoring of Tier-1 suppliers, not just annual questionnaires.
• Zero Trust Architecture: Deploy a Zero Trust model that restricts access to engineering vaults. Engineering data should be segmented from the corporate network and accessible only via verified, MFA-protected devices.

Secure Your Business with Brinztech — Global Cybersecurity Solutions Brinztech protects organizations worldwide from evolving cyber threats. Whether you’re a startup or a global enterprise, our expert solutions keep your digital assets safe and your operations running smoothly.

Questions or Feedback? For expert advice, use our ‘Ask an Analyst’ feature. Brinztech does not warrant the validity of external claims. For general inquiries or to report this post, please email us: contact@brinztech.com