Cyberattack on Intoxalock Leaves Thousands Unable to Start Cars Across US
Key Takeaways
- ▸A cyberattack disabled Intoxalock's systems for over a week, preventing mandatory vehicle calibrations for DUI offenders across the country
- ▸The outage left thousands of users at risk of vehicle lockouts and legal non-compliance due to failed calibration appointments
- ▸Intoxalock offered 10-day extensions and cost reimbursement, but the incident has triggered user backlash and potential class-action litigation
Summary
A cyberattack on Intoxalock, a Des Moines, Iowa-based provider of ignition interlock devices, crippled the company's systems for over a week in March, preventing thousands of users from accessing critical calibration services. Ignition interlock devices are required by many states for drivers convicted of DUI offenses, and the devices rely on backend systems for calibrations typically needed monthly. The attack, which began March 14, made calibrations impossible, leaving users at risk of vehicle lockouts if they missed their calibration windows—a critical safety and legal issue for individuals whose driving privileges depend on compliance with these systems.
Intoxalock initially authorized 10-day extensions through local service centers on March 18 and promised to cover user costs including tow fees resulting from the outage. However, the company's systems remained down through March 22, when the company finally announced restoration of its operations. The incident has sparked significant user backlash, with affected drivers on Reddit's r/intoxalock community discussing potential class-action lawsuits. The outage affected approximately 7–10 percent of users in Connecticut, with similar impacts reported across other states, highlighting the risks of centralized digital infrastructure for critical, legally-mandated safety systems.
- The incident reveals critical infrastructure vulnerabilities in regulated systems that directly impact public safety and legal compliance
