Cyber Incident Victim: Applus Technologies

On March 30, 2021, Applus Technologies, a provider of vehicle emissions testing platforms, experienced a malware attack that forced the company to disconnect its IT systems. The disruption immediately halted vehicle inspections across eight U.S. states: Connecticut, Georgia, Idaho, Illinois, Massachusetts, Utah, and Wisconsin. Darrin Greene, CEO of Applus Technologies’ U.S. entity, publicly acknowledged the incident, characterizing such attacks as “fairly common” and apologizing for the inconvenience. The company emphasized its commitment to restoring services but declined to provide a specific timeline, citing state-mandated mitigation and testing protocols. Applus stated recovery would require rigorous validation to ensure all systems were malware-free, functionally operational, and thoroughly tested before reactivation. This process involved coordination with state agencies and third-party station owners responsible for inspection workstation equipment. By April 3, the outage persisted, with no resolution expected within hours or days.

The prolonged outage prevented vehicle owners from completing mandatory emissions inspections, raising concerns about law enforcement citations for expired inspections. State DMVs in affected regions anticipated service disruptions lasting at least through April 6, with potential extensions. Several states proactively notified law enforcement agencies, requesting leniency regarding citations for lapsed inspections during the outage. While Applus did not disclose the malware type, external analysis suggested a probable ransomware attack, noting the potential compromise of vehicle and owner data. The company maintained operational silence beyond its initial disclosure, declining further comment to media inquiries. Service restoration remained contingent on completing multi-stakeholder testing and verification processes to prevent recurrent disruptions upon reactivation.