Cyber Incident Victim: BRP-Rotax GmbH & Co KG
Date:
Aug 2022
Location:
Austria
Summary
A cyberattack targeting BRP-Rotax GmbH & Co KG's parent company caused global operational disruptions, forcing the Austrian subsidiary to halt production at its Gunskirchen facility. The incident led to a complete stoppage of manufacturing operations, impacting approximately 1,700 employees at the affected site. While the attack's origin and specific demands remained undisclosed, it resulted in significant worldwide outages across the corporation's infrastructure. The production suspension occurred amidst ongoing expansion efforts at the facility, including new development projects and planned workforce increases. The company maintained its strategic focus on developing high-performance electric propulsion systems despite the operational setback.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On or around August 9, 2022, BRP-Rotax GmbH & Co KG, an Austrian engine manufacturer based in Gunskirchen (Upper Austria), experienced operational disruptions due to a cyberattack targeting its Canadian parent company Bombardier Recreational Products (BRP). The attack caused global outages across BRP’s corporate infrastructure, indirectly forcing Rotax to halt production at its Gunskirchen facility. Machinery ceased operations on Tuesday, August 9, though the specific nature of the attack—such as ransomware, data breach, or intrusion method—was not disclosed by the company. No information was released regarding whether the attackers issued financial or operational demands. The production suspension affected Rotax’s 1,700 employees in Gunskirchen, where the company was concurrently constructing a new development building and preparing to onboard 200 additional staff. BRP-Rotax’s role as a developer and producer of high-performance electric drive components for BRP’s global operations positioned the disruption within a broader corporate initiative to electrify its product lines by 2026.
The incident occurred during a strategic expansion phase for BRP-Rotax, which had announced a $300 million investment in May 2022 to develop electric propulsion systems for BRP’s planned electric models across all product lines. This included the scheduled mid-2024 launch of Can-Am electric motorcycles. While the cyberattack’s technical scope—such as affected systems, data compromise, or duration—remained undisclosed, the operational impact was confined to production stoppages without reported supply chain or safety incidents. The company did not describe its response actions beyond the production halt, leaving containment measures, forensic investigations, and recovery timelines unaddressed in public statements. Management, including CEO Wolfgang Rapberger, emphasized the facility’s role in advancing regional technology and employment but did not link the cyber incident to delays in electrification timelines or investment plans. No customer, regulatory, or law enforcement updates were disclosed in the immediate aftermath.