Cyber Incident Victim: Alzura
Date:
Jan 2024
Location:
Germany
Summary
Alzura, an online tire and parts retail giant, experienced a cyberattack impacting its B2B platform Tyre24, merchant accounts, and White-Label solutions including Tyre Shopping and Alzura Shop. The incident disrupted operations across these critical e-commerce services, which support business customers and white-label online storefronts for tire retailers. The attack targeted core infrastructure facilitating B2B trade and third-party retail partnerships, though specific technical details or data compromise were not disclosed in available reports.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 3 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On January 31, 2024, the online tire and auto parts retail giant Alzura confirmed it had fallen victim to a cyberattack impacting critical business operations. The breach compromised merchant accounts on Alzura Tyre24, the company’s primary B2B platform facilitating a significant portion of Germany’s commercial tire trade. Attackers also infiltrated Alzura’s white-label e-commerce solutions, specifically the "Tyre Shopping" and "Alzura Shop" platforms, which enable third-party retailers to operate branded online storefronts. The incident disrupted services across these systems, though the company did not disclose the attack’s duration, entry vectors, or whether customer data was exfiltrated. Alzura’s B2C platforms, including "Reifen vor Ort," were not explicitly cited as compromised in initial reports.
The attack directly affected Alzura’s core clientele of tire dealers, independent workshops, auto dealerships, wholesalers, and manufacturers reliant on its platforms for transactions and inventory management. As a dominant force in automotive aftermarket e-commerce, the outage risked supply chain delays and operational interruptions across the sector. No ransomware claims or attacker identities were publicly disclosed, and Alzura did not detail containment measures, forensic findings, or recovery timelines. The incident coincided with the company’s launch of Automotive Insights, a media channel intended to bolster industry communication, though no operational link between the two events was confirmed. Technical disruptions to Alzura’s white-label services forced partner retailers to suspend or modify online sales operations pending system restoration.