Car components large LKQ Company disclosed that one in every of its enterprise items in Canada was hacked, permitting menace actors to steal knowledge from the corporate.
LKQ is a public American firm specializing in automotive alternative components, elements, and companies to restore and preserve autos. The corporate has 45,000 workers in 25 nations and operates quite a few manufacturers, together with Keystone, Tri Star, and ADL.
In a Friday night FORM 8-Ok submitting filed with the SEC, the corporate says one in every of its enterprise items in Canada was breached on November 13, disrupting enterprise operations.
“On November 13, 2024, LKQ Corporation (the “Firm” or “we”) detected unauthorized access to information technology (IT) systems of a single business unit in Canada (“Enterprise Unit”). The attack disrupted the Business Unit’s operations,” reads the LKQ Kind 8-Ok submitting.
“Upon discovery, we immediately began taking steps to investigate, contain, and recover from the incident, including activating our security incident response and recovery plans, partnering with industry leading forensic investigators, and initiating containment measures for affected systems. We also promptly notified law enforcement authorities. We are analyzing data impacted by the incident and will be notifying affected parties as appropriate.”
“As a result of the incident, the Company’s operations within this Business Unit were adversely impacted for a few weeks while affected systems were recovered; however, the Company believes that it has effectively contained the threat and that none of its other businesses were impacted by the threat, and the Business Unit is now operating near full capacity.”
The corporate says that they don’t consider the incident may have any materials impression on its financials or operations for the rest of the fiscal 12 months. LKQ says that they may search reimbursement for prices and bills stemming from the cyberattack from their cyber insurance coverage firm.
LKQ warns that its containment measures have triggered some disruption throughout the breached enterprise for just a few weeks however has since restored operations.
No ransomware gangs or different menace actors have claimed duty for the assault.
