Page last updated on August 24, 2025
DATA I/O CORP initially disclosed a cybersecurity incident in an SEC 8-K filing on 2025-08-21 17:20:05 EDT.
Company Summary
DATA I/O Corporation provides programming and security provisioning systems that enable manufacturers to program semiconductors, microcontrollers, and secure devices used in automotive, industrial, and consumer electronics.
Incident Details
Material: Unknown
Is Breach: Unknown
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)
Compromised Date: 2025-08-15
Detected Date: 2025-08-15
Disclosure Date: 2025-08-21
Contained Date:
Recovered Date:
Attack Goal: Unknown
Costs: No Costs Tracked (yet)
Filings
8-K filed on 2025-08-21
DATA I/O CORP filed an 8-K at 2025-08-21 17:20:05 EDT
Accession Number: 0001654954-25-009925
Item 1.05 Material Cybersecurity Incidents.
On August 16, 2025, Data I/O Corporation (the “Company”) experienced a ransomware incident (the “Incident”) on certain of its internal IT systems. Upon discovery, the Company promptly activated its response protocols, took steps to secure its global IT systems and implemented containment measures, including proactively taking certain platforms offline and implementing other mitigation measures. The Company also engaged leading cybersecurity experts to support the IT system recovery and conduct a comprehensive investigation. Based on the findings, the Company will take additional actions as appropriate, including notifying affected individuals and regulatory authorities in compliance with applicable laws.
The Company is working diligently to restore the affected systems. The Incident has temporarily impacted the Company’s operations, including internal/external communications, shipping, receiving, manufacturing production, and various other support functions. While the Company has implemented measures to allow for the restoration of some operational functions, the timeline for a full restoration is not yet known. As the investigation of the Incident is ongoing, the full scope, nature, and impact are also not yet known.
As of the date of this filing, the Incident does not appear to have had a material impact on the Company’s business operations; however, the full scope and impact of this Incident is not yet known and could result in a future determination that the incident either was not or has been material to the Company’s financial statements and results of operations. The expected costs related to the Incident, including fees for our cybersecurity experts and other advisors, and costs to restore any impacted systems, are reasonably likely to have a material impact on the Company’s results of operations and financial condition.
Company Information
| Name | DATA I/O CORP |
| CIK | 0000351998 |
| SIC Description | Instruments For Meas & Testing of Electricity & Elec Signals |
| Ticker | DAIO - Nasdaq |
| Website | |
| Category | Non-accelerated filer Smaller reporting company |
| Fiscal Year End | December 10 |