lockbit3 attacks auto liv

Incident Date:

July 29, 2022

World map



lockbit3 attacks auto liv


auto liv




Rue Villaret de Joyeuse, France

Paris, France

First Reported

July 29, 2022

Autoliv, the World's Largest Automotive Safety Supplier, Suffers Ransomware Attack by Lockbit3

Company Size and Industry Standout

Autoliv stands as a beacon in the automotive safety industry, boasting a workforce of approximately 70,000 employees. The company's core mission—to save more lives and enhance mobility safety—is evident in their goal to prevent 100,000 fatalities annually. Beyond passenger vehicles, Autoliv's innovative safety solutions cater to a broad spectrum of mobility options, showcasing their versatility in an evolving market.

Vulnerabilities and Targeting

The recent ransomware attack on Autoliv by Lockbit3 illuminates the digital vulnerabilities faced by even the most established corporations. Lockbit3, notorious for its assertive strategies, has carved a significant niche in the ransomware domain. Their approach typically involves infiltrating networks, neutralizing antivirus defenses, data exfiltration, and finally, ransomware deployment.

This incident with Autoliv accentuates the critical need for stringent cybersecurity protocols, especially within the manufacturing realm—a sector increasingly targeted by ransomware syndicates. To counter such threats, organizations are urged to address known vulnerabilities promptly, educate their workforce on phishing recognition and reporting, and implement multifactor authentication.

The ransomware attack on Autoliv is a stark reminder of the persistent cyber threats facing global industries. As the premier automotive safety supplier, Autoliv's ordeal underscores the imperative for continuous vigilance and proactive cybersecurity measures.


  • Autoliv - More Lives Saved More Life Lived. (n.d.). Retrieved April 10, 2024, from www.autoliv.com
  • #StopRansomware: Royal Ransomware | CISA. (n.d.). Retrieved April 10, 2024, from www.cisa.gov
  • Ransomware Attack List and Alerts - Cloudian. (n.d.). Retrieved April 10, 2024, from www.cloudian.com
  • FBI and allies seize dark-web site of world's most prolific ransomware group. (2024, February 20). Retrieved April 10, 2024, from www.cnn.com

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.