Bridgestone confirms a cyberattack that disrupted manufacturing vegetation. This text particulars the affect on workers, professional evaluation, and a have a look at the suspected hacking group, Scattered Lapsus$ Hunters.
Tire manufacturing big Bridgestone, the world’s largest by manufacturing quantity, has confirmed it’s investigating a cyberattack that has impacted a few of its manufacturing amenities throughout North America.
The corporate, which operates in over 150 international locations with 50 manufacturing vegetation and 55,000 workers, said that it believes the incident was restricted and has been contained.
Studies of the incident first surfaced on Tuesday, September 2, 2025, regarding two manufacturing amenities in Aiken County, South Carolina. The very subsequent day, comparable disruptions have been reported at a manufacturing plant in Joliette, Quebec.
Whereas the Joliette mayor, Pierre-Luc Bellerose, believes all North American vegetation have been affected, the corporate has characterised the occasion as a “restricted cyber incident.” On the affected vegetation, workers whose regular duties have been stopped have been reportedly given a selection: keep on-site to carry out preventive upkeep for a full day’s pay or go house with out pay.
Bridgestone Americas (BSA), the corporate’s arm on this area, launched an announcement saying that its group responded shortly to the difficulty. In consequence, the corporate believes it was in a position to comprise the incident in its early phases. Bridgestone doesn’t assume any buyer knowledge or interfaces have been compromised and says enterprise is now working as typical.
“Now we have launched a complete forensic evaluation and consider we contained the incident early,” the corporate’s assertion reads.
The Suspected Attackers
The precise nature of the assault is presently unknown, and no risk group has taken formal duty. Nevertheless, it’s price noting {that a} group referred to as Scattered Lapsus$ Hunters has been significantly energetic in current weeks, claiming duty for assaults on different main firms like Jaguar Land Rover and Salesforce.
This group is claimed to be a merger of three outstanding hacking teams: Scattered Spider, Lapsus$, and ShinyHunters. This similar group not too long ago made headlines for threatening Google’s CEO, demanding that two safety consultants be fired or they’d leak stolen knowledge.
These teams are recognized for stealing delicate knowledge after which attempting to extort their victims for cash. Whereas their claims in regards to the Bridgestone incident stay unconfirmed, the chance highlights a broader sample of high-profile assaults by this group.
This incident marks the second time lately that Bridgestone has confronted a major cyberattack, following a LockBit ransomware assault in 2022 (PDF) that additionally disrupted manufacturing. Whereas the corporate has not confirmed if this newest assault is ransomware, its concentrate on containing the incident and mitigating potential provide chain fallout exhibits the seriousness of the state of affairs.
Knowledgeable Perspective
In feedback shared with Hackread.com, Erich Kron, Safety Consciousness Advocate at KnowBe4, defined the important problem for producers. Even a minor assault can require a shutdown of manufacturing traces, which is a posh course of. He burdened the necessity for a stable enterprise continuity plan and a human danger administration program to fight social engineering assaults like phishing, which are sometimes the entry level for malware.
