These cyber attacks are well coordinated. It is as if they are preparing for something much larger. While Biden is in the White House, we are all vulnerable.
Car dealerships in the United States are facing ongoing operational disruptions due to a cyber incident affecting CDK Global, a major software provider. CDK Global, which serves approximately 15,000 dealers across North America, reported shutting down most of its systems on June 19 to investigate a cyberattack, significantly impacting the automotive retail industry.
After experiencing two cyberattacks this week in which it had to take down its customer support lines and shut down most of its systems, CDK Global posted a voicemail advising that threat actors are contacting CDK customers and business partners posing as members or affiliates of… pic.twitter.com/Iigm12nljG
— josette caruso (@josettecaruso) June 21, 2024
CDK Global offers a suite of services including dealer management, retail operations, customer relationship management, finance and insurance, as well as network and communication solutions. These tools are crucial for dealerships to manage sales of vehicles and parts, among other essential functions. The cyberattack has forced many dealers to revert to manual processes like using pen and paper, while others have had to pause most of their operations entirely.
On the afternoon of June 19, CDK announced it had begun restoring the systems affected by the initial cyberattack. However, later that same evening, the company experienced another cyber incident, leading to a second shutdown of most of its systems. This has extended the operational challenges for dealerships, with no immediate resolution in sight.
CYBER ATTACK 🚗 | Auto dealerships in the US and Canada were severely disrupted on Thursday due to a second cyber incident affecting data provider CDK Global. https://t.co/9mRWMgaHYG pic.twitter.com/mjUIUNcEqH
— News 4 San Antonio (@News4SA) June 21, 2024
A spokesperson from CDK communicated to SecurityWeek that the company is actively working with third-party cybersecurity experts to assess the impact and to provide regular updates to their customers. The goal is to restore full functionality and ensure dealers can return to normal operations as swiftly as possible. Despite these efforts, CDK has informed its customers that the systems may remain offline for several more days.
The nature of the cyberattack, potentially involving ransomware, has yet to be confirmed, as no ransomware group has claimed responsibility. Additionally, CDK has neither confirmed nor denied whether ransomware was involved in the incident when inquiries were made by SecurityWeek. This ongoing situation highlights the critical importance of cybersecurity measures within the automotive retail sector and the broader implications of such attacks on business operations.
Major Points
- CDK Global, a key software provider for about 15,000 North American car dealerships, has experienced a significant cyberattack, leading to the shutdown of most of its systems on June 19.
- The company offers various services crucial to dealership operations, including sales management, retail operations, and customer relationship management.
- The initial cyber incident prompted a temporary restoration of services, but a subsequent attack on the same day caused another system shutdown.
- CDK Global is collaborating with cybersecurity experts to assess the impact and restore services, but systems are expected to be down for several days.
- The exact nature of the attack is not confirmed, but the severe disruption suggests potential ransomware involvement; no group has yet claimed responsibility.
Lap Fu Ip – Reprinted with permission of Whatfinger News
