Rheinmetall AG

Rheinmetall AG, also referred to as Rheinmetall or the Rheinmetall Group, is a German‑headquartered enterprise that maintains distinct civilian automotive and military divisions, reflecting its dual focus on defence technology and automotive components. The company’s headquarters are situated in Germany, and it operates under the legal structure of a joint‑stock corporation that encompasses various subsidiaries engaged in the design, production, and integration of systems for both armed forces and commercial vehicle manufacturers. While the prompt does not provide explicit figures for workforce size, revenue, or global footprint, the organisation’s involvement in high‑value defence contracts and its automotive supply chain activities indicate a notable presence within European industrial sectors. Rheinmetall’s distinguishing attributes stem from its specialization in armoured vehicles, weaponry, and electronic systems for defence markets, alongside its production of pistons, bearings, and other precision parts for the automotive industry, a specialization evidenced by the separation of its civilian and military operations in public disclosures. The firm’s structural notes, as far as the supplied information reveals, do not specify a parent‑company relationship beyond its own group status, nor do they detail ownership percentages or shareholder composition, so such aspects remain unspecified in this profile.

In April 2023 Rheinmetall experienced a cyberattack that specifically targeted its civilian automotive division, prompting an investigation led by the Cologne public prosecutor’s office in cooperation with the Cybercrime Central and Contact Point North Rhine‑Westphalia; the company confirmed that its military operations remained unaffected while it assessed the incident’s scope and collaborated with authorities, although further details were withheld owing to the ongoing inquiry. This 2023 incident was reported by multiple outlets, including Handelsblatt, BleepingComputer, and Heise, which noted the involvement of the BlackBasta ransomware group in the attack. Earlier, in September 2019, a malware infection disrupted production at a German car parts manufacturer’s facilities located in Brazil, Mexico, and the United States, an event attributed to Rheinmetall’s automotive segment and resulting in projected weekly losses of approximately €3‑4 million alongside a noticeable decline in the company’s share price. The recovery effort was estimated to require two to four weeks, though the precise malware variant and the identity of the threat actor were never publicly disclosed, and the attack was confined to operational technology systems in the affected plants without propagating to the parent organisation’s broader IT infrastructure. These episodes, documented by sources such as Cyberscoop, illustrate the organisation’s exposure to cyber threats targeting its manufacturing operations while highlighting its efforts to maintain operational continuity across its defence and automotive divisions.