Bridgestone confirms a cyberattack that disrupted manufacturing crops. This text particulars the impression on workers, skilled evaluation, and a have a look at the suspected hacking group, Scattered Lapsus$ Hunters.
Tire manufacturing large Bridgestone, the world’s largest by manufacturing quantity, has confirmed it’s investigating a cyberattack that has impacted a few of its manufacturing amenities throughout North America.
The corporate, which operates in over 150 international locations with 50 manufacturing crops and 55,000 workers, acknowledged that it believes the incident was restricted and has been contained.
Experiences of the incident first surfaced on Tuesday, September 2, 2025, regarding two manufacturing amenities in Aiken County, South Carolina. The very subsequent day, related disruptions had been reported at a manufacturing plant in Joliette, Quebec.
Whereas the Joliette mayor, Pierre-Luc Bellerose, believes all North American crops had been affected, the corporate has characterised the occasion as a “restricted cyber incident.” On the affected crops, workers whose regular duties had been stopped had been reportedly given a alternative: keep on-site to carry out preventive upkeep for a full day’s pay or go residence with out pay.
Bridgestone Americas (BSA), the corporate’s arm on this area, launched an announcement saying that its crew responded rapidly to the problem. Consequently, the corporate believes it was in a position to comprise the incident in its early phases. Bridgestone doesn’t suppose any buyer knowledge or interfaces had been compromised and says enterprise is now working as ordinary.
“We’ve launched a complete forensic evaluation and consider we contained the incident early,” the corporate’s assertion reads.
The Suspected Attackers
The precise nature of the assault is at the moment unknown, and no risk group has taken formal accountability. Nevertheless, it’s price noting {that a} group referred to as Scattered Lapsus$ Hunters has been significantly energetic in latest weeks, claiming accountability for assaults on different main corporations like Jaguar Land Rover and Salesforce.
This group is claimed to be a merger of three outstanding hacking teams: Scattered Spider, Lapsus$, and ShinyHunters. This similar group just lately made headlines for threatening Google’s CEO, demanding that two safety consultants be fired or they’d leak stolen knowledge.
These teams are identified for stealing delicate knowledge after which attempting to extort their victims for cash. Whereas their claims in regards to the Bridgestone incident stay unconfirmed, the chance highlights a broader sample of high-profile assaults by this group.
This incident marks the second time in recent times that Bridgestone has confronted a major cyberattack, following a LockBit ransomware assault in 2022 (PDF) that additionally disrupted manufacturing. Whereas the corporate has not confirmed if this newest assault is ransomware, its deal with containing the incident and mitigating potential provide chain fallout exhibits the seriousness of the state of affairs.
Skilled Perspective
In feedback shared with Hackread.com, Erich Kron, Safety Consciousness Advocate at KnowBe4, defined the essential problem for producers. Even a minor assault can require a shutdown of manufacturing strains, which is a fancy course of. He confused the necessity for a stable enterprise continuity plan and a human threat administration program to fight social engineering assaults like phishing, which are sometimes the entry level for malware.
