Opening incident

Loading disclosure

Pulling the filing, breach taxonomy, and impact scoring…

Duke

Blog Incident database Request access

Loading database

Indexing incidents

Fetching SEC-disclosed cyber incidents and Duke's breach taxonomy…

Duke

Blog Incident database Request access

Opening incident

Loading disclosure

Pulling the filing, breach taxonomy, and impact scoring…

LKQ Corporation Unknown (2024) | SEC Cybersecurity Incident | Duke Security

Duke

Blog Incident database Request access

← Back to incidents

Incident · Unknown

LKQ Corporation · LKQ

Consumer DiscretionaryUSAIncident November 13, 2024Filed December 13, 2024

Impact score

Business continuity

Partial

Insurance involved

Yes

Filing

8-K · 8.01

Breach taxonomy

UnknownMalwareRevenue ProcessBiz Interruption

Summary

On November 13, 2024, LKQ Corporation detected unauthorized access to IT systems of a single business unit in Canada. The attack disrupted that business unit's operations for a few weeks while affected systems were recovered. LKQ activated its security incident response and recovery plans, engaged forensic investigators, and notified law enforcement. No other business units were impacted. The business unit was operating near full capacity by the filing date. LKQ intends to submit claims to its cybersecurity insurers for reimbursement of costs and losses. Filed under Item 8.01; company determined the incident was not material.

Tagging rationale

ThreatUnknown

Filing does not attribute the incident to a specific actor → UNKNOWN.

MethodsMalware

Unauthorized access to IT systems disrupting business unit operations is consistent with malware deployment → MALWARE.

Assets

Revenue Process

Unauthorized access disrupted the operations of a Canadian business unit that generates revenue for LKQ → REVENUE-PROCESS.

EffectsBiz Interruption

The affected business unit's operations were adversely impacted for a few weeks while systems were recovered → BIZ-INTERRUPTION.

Business continuityPartial

Filing states the business unit was operating near full capacity by the filing date but was disrupted for a few weeks, indicating partial recovery over time → Partial.

Impact

Unauthorized access disrupted a single Canadian business unit for a few weeks; no other LKQ units affected; non-material per company assessment → score 2.

InsuranceYes

Filing states the company will be seeking reimbursement by submitting claims to its cybersecurity insurers → true.

Read the original SEC filing excerpt

Item 8.01 Other Events. On November 13, 2024, LKQ Corporation (the Company or we) detected unauthorized access to information technology (IT) systems of a single business unit in Canada (Business Unit). The attack disrupted the Business Unit's operations. Upon discovery, we immediately began taking steps to investigate, contain, and recover from the incident, including activating our security incident response and recovery plans, partnering with industry leading forensic investigators, and initiating containment measures for affected systems. We also promptly notified law enforcement authorities. We are analyzing data impacted by the incident and will be notifying affected parties as appropriate. As a result of the incident, the Company's operations within this Business Unit were adversely impacted for a few weeks while affected systems were recovered; however, the Company believes that it has effectively contained the threat and that none of its other businesses were impacted by the threat, and the Business Unit is now operating near full capacity. As of the date of this filing, we believe the impacts of the cyber incident are not, and are not reasonably likely to be, material to our financial condition or results of operations for the fiscal year. We will be seeking reimbursement of costs, expenses, and losses stemming from the cyber incident by submitting claims to our cybersecurity insurers.

View SEC filing Back to database

Get alerts on new incidents

Drop your email and we’ll let you know when fresh SEC disclosures land in the database. No spam.

More in Consumer Discretionary

Unknown · March 28, 2026

Hasbro, Inc.

On March 28, 2026, Hasbro identified unauthorized access to its corporate network. The company activated its security incident response prot…

Unknown · March 19, 2026

RCI Hospitality Holdings, Inc.

RCI Internet Services, a subsidiary of RCI Hospitality Holdings, discovered on March 23, 2026 a cybersecurity incident that began on March 1…

Priv Insider · November 18, 2025

Coupang, Inc.

On November 18, 2025, Coupang Corp. (a Korean subsidiary of Coupang, Inc.) detected a cybersecurity incident in which a former employee may …

Cyber Criminals · October 15, 2025

Jewett-Cameron Trading Co. Ltd.

On October 15, 2025, Jewett-Cameron Trading Co. Ltd. discovered a threat actor had gained unauthorized access to its IT environment, deployi…