LKQ Confirms Data Breach in Oracle EBS System
▼ Summary
– LKQ, a Fortune 500 autoparts company, confirmed a cyber-attack on its Oracle E-Business Suite that compromised personal data for over 9,070 individuals.
– The breach occurred on August 9, 2024, was discovered on October 3, and the data analysis was finalized on December 1.
– Compromised information included the victims’ Employer Identification Numbers and Social Security numbers.
– In response, LKQ took its Oracle EBS system offline, enhanced security safeguards, and offered two years of free credit monitoring to those affected.
– The Clop ransomware group claimed the attack, which also impacted other major organizations like Canon, Mazda, and a London NHS trust.
A major automotive parts distributor has confirmed a significant data breach affecting its Oracle E-Business Suite system, compromising the sensitive personal information of thousands. The NASDAQ-listed company, LKQ, filed a notification revealing that the personal data of over 9,070 individuals was accessed without authorization. This compromised information includes the victims’ LKQ Employer Identification Numbers and, critically, their Social Security numbers.
The intrusion into the company’s systems is reported to have occurred on August 9th. LKQ discovered the security incident on October 3rd. The Delaware-based corporation began notifying the affected individuals via letters sent out on December 15th.
In its communication to those impacted, LKQ detailed its response. The company immediately launched an investigation with assistance from an external forensic firm. As a containment measure, the Oracle EBS environment was taken offline to prevent further unauthorized access. Determining the full scope of the compromised data was described as a “time consuming” process, which was ultimately finalized on December 1st.
To address the breach and bolster its defenses, LKQ reported deploying additional system safeguards. The company reinforced its existing security practices and enhanced both monitoring and controls across its network. As part of its standard security operations, LKQ stated it conducts regular reviews of its privacy policies and procedures, implementing necessary changes to improve its overall information security program.
For those affected, the company is offering complimentary services to help mitigate potential harm. LKQ is providing two years of free credit monitoring and identity restoration services through Cyberscout, which is a TransUnion company.
As a Fortune 500 enterprise with substantial annual revenue, LKQ represents a high-profile victim. The attack has been linked to the notorious Clop ransomware group, which publicly claimed responsibility for exploiting vulnerabilities in Oracle EBS. This incident places LKQ among several other major organizations targeted in the same campaign. Other confirmed victims include the Japanese technology firm Canon, the London-based Barts Health NHS Trust, the software company GlobalLogic, and multinational corporations like Logitech and Mazda.
(Source: InfoSecurity Magazine)