ASML, the largest supplier for the semiconductor industry, has denied claims that its systems were breached after a threat actor posted alleged internal data online. Cybersecurity analysts said the claims were made by the same individual who previously falsely alleged a data breach at NordVPN.
The claims were posted on a data leak forum by a user operating under the alias 1011. The post alleged access to more than 150 internal ASML databases and included links to what was described as sample data. The actor did not provide technical details explaining how the alleged access was obtained.
Researchers who reviewed the posted material said they found no evidence that the data originated from ASML systems. Analysis of the files showed no indicators linking them to ASML infrastructure, internal applications, or known data formats used by the company. The researchers said the material appeared inconsistent with a genuine breach.
ASML said it reviewed the claims and confirmed that its systems had not been compromised. The company said the allegations were inaccurate and that there was no evidence of unauthorised access to its networks or data.
The same forum user previously claimed to have breached NordVPN. NordVPN said at the time that the claim was false and that the data referenced by the actor did not come from its production or development systems. The company stated that its investigation revealed no exposure of customer or internal data.
Cybersecurity analysts said the repetition of similar claims against different companies suggests an attempt to gain attention rather than disclose verified breaches. They noted that false breach claims are common on leak forums, where actors may post fabricated or recycled data to build a reputation or provoke a response from targeted organisations.
The ASML case highlights the challenges companies face in responding to public allegations of breaches, particularly when claims spread rapidly online. Security specialists said verification by the affected organisation remains essential before treating such claims as credible.
Both ASML and NordVPN said they continue to monitor for threats and misinformation related to their services. Neither company reported any impact on customers or operations linked to the forum posts.