Cyber Incident Victim: Advanced Flexible Composites Inc.

On January 17, 2017, Advanced Flexible Composites Inc. (AFC), an Illinois-based manufacturer of fluoropolymer-coated and silicone-coated fabrics and belting, experienced a hacking incident that compromised its computer systems. The attack disrupted core business operations, rendering the company unable to process customer quote requests or orders. Email communications were also incapacitated, severing a critical channel for customer and supplier interactions. AFC formally acknowledged the incident on the same day through a letter distributed to its customers. In this communication, the company explicitly stated that no personal information had been compromised during the breach, emphasizing the security of sensitive data despite the operational disruption. The attack’s immediate effect was a complete halt to transactional capabilities and internal workflows dependent on the compromised systems. AFC did not disclose the specific attack vector or method of intrusion in its customer notification. The timing of the breach detection relative to the initial intrusion remained unspecified in available reports. No evidence suggested the incident was part of a broader campaign targeting multiple organizations.

The operational impacts centered on the paralysis of AFC’s order processing and communication infrastructure, directly affecting customer-facing services and supply chain coordination. The company’s IT department initiated remediation efforts immediately following the breach, working to restore system functionality and secure compromised assets. AFC’s customer letter highlighted the absence of data exfiltration involving personal or financial information, though it did not address whether proprietary business data or intellectual property was accessed. No ransomware or extortion demands were reported in connection with the incident, distinguishing it from financially motivated attacks prevalent during that period. The duration of the disruption and full recovery timeline were not publicly documented. AFC maintained transparency with customers regarding the operational status but did not release technical details about the attack’s origin or scope beyond confirming the containment efforts. The incident underscored vulnerabilities in the manufacturing sector’s digital infrastructure without triggering reported financial penalties or regulatory actions. Business continuity measures were implied but not detailed in the limited public disclosures.