US Auto Parts Giant LKQ Confirms Oracle E-Business Suite Breach in Enterprise Cyberattack

LKQ Corporation, a major US-based auto parts manufacturer and distributor, has confirmed a cybersecurity breach involving its Oracle E-Business Suite (EBS) system. The company stated that unauthorized access was detected in one of its enterprise applications. Oracle EBS is used to manage critical business operations. The incident has raised concerns about the security of enterprise software platforms.

The breach was discovered in early October 2025 after LKQ’s security team noticed unusual activity within the Oracle EBS environment. Further investigation confirmed that an external party had gained unauthorized access. As a precaution, LKQ took affected systems offline. The company then began a detailed internal and external investigation.

According to LKQ, the attackers exploited known vulnerabilities in Oracle E-Business Suite that were being actively targeted at the time. These weaknesses allowed access without proper authentication. Similar attacks were reported at other organizations using the same software. This suggests the breach was part of a larger, coordinated cyber campaign.

The ransomware group Cl0p has claimed responsibility for the attack. The group publicly listed LKQ as one of its victims, indicating that data from the company’s systems was accessed. Cl0p is known for targeting large organizations by exploiting flaws in widely used enterprise software. The group often uses data theft as leverage.

LKQ later confirmed that sensitive personal information was exposed in the incident. The affected data includes names, mailing addresses, and identification-related details such as Social Security numbers and employer identification numbers. The information belonged to certain employees, suppliers, and related individuals. Financial account passwords were not mentioned as part of the exposure.

After confirming the scope of the breach, LKQ began notifying affected individuals as required by law. Notification letters were sent explaining what happened and what information was involved. The company stated that there is currently no confirmed evidence of misuse. However, the investigation into the incident is still ongoing.

To support those impacted, LKQ is offering two years of free credit monitoring and identity protection services. Affected individuals have been advised to monitor their credit reports and financial activity closely. The company also recommended placing fraud alerts if any suspicious activity is noticed. These steps are meant to reduce potential long-term risks.

Security experts say this incident highlights the growing threat to enterprise software systems like Oracle EBS. Such platforms store highly sensitive data and are attractive targets for advanced attackers. LKQ has stated it is strengthening its security controls and working with authorities. The breach serves as a reminder of the importance of timely patching and continuous monitoring.

Stay alert, and keep your security measures updated!

Source: Follow cybersecurity88 on X and LinkedIn for the latest cybersecurity news