A widespread cyberattack against Intoxalock, a major U.S. provider of vehicle breathalyzer devices, has left an unknown number of drivers stranded and unable to start their vehicles nationwide. The incident highlights the growing vulnerability of connected vehicle technologies to cyber threats, with real-world consequences for individuals relying on these systems.
The Disruption: How Breathalyzers Became Roadblocks
Intoxalock, which operates in 46 states and services roughly 150,000 drivers annually, experienced downtime beginning March 14th. The company’s devices are mandatory for some drivers—often those convicted of DUI/DWI offenses—who must pass a breath alcohol test before their vehicles will start.
The core issue is calibration. These devices require periodic check-ups to ensure accuracy, and Intoxalock’s cyberattack has halted these services. Drivers whose devices are due for calibration are now finding their cars immobilized, effectively locked out until the company restores functionality.
Reports from the Road: Lockouts and Delays
Drivers report being unable to start their vehicles, with some stranded at auto shops and along roadsides. Reports from Maine to Minnesota confirm the issue is not localized. One Massachusetts auto shop reported vehicles sitting in its lot for days because of the outage.
The exact nature of the cyberattack remains undisclosed. Intoxalock has not confirmed whether it was a ransomware attack, a data breach, or any other type of intrusion, nor has it responded to questions about ransom demands.
Why This Matters: The Rising Risks of Connected Cars
This incident underscores a critical but often overlooked risk of the modern automotive industry: the increasing reliance on connected technology. Breathalyzer ignition interlocks, fleet management systems, and even basic vehicle functions are now digitally managed. This connectivity introduces new attack vectors for malicious actors.
The reliance on third-party software and data also raises questions about vendor security practices. Intoxalock’s lack of transparency about the attack’s details fuels uncertainty.
The Wait Continues: No Recovery Timeline
As of this writing, Intoxalock has not provided an estimate for when its systems will be restored. The indefinite outage leaves affected drivers in limbo, highlighting the urgent need for cybersecurity preparedness in the automotive sector. The incident serves as a stark reminder that even seemingly niche connected devices can have far-reaching consequences when compromised.
