CDK Outage: Dealership's Affected By Cyberattack

Catch up on the recent cyberattack on the CDK system causing harm to thousands of dealerships.

Author

Devon Wantland
June 26, 2024 • Estimated Reading Time: 4 minutes

Firefly

Dealership’s Return To Paper 💣️ 

Another Wednesday, another line of business under attack from cyberthreats. Last week, dealerships everywhere found themselves stripped of their processing system forcing them to go back to paper documenting. Let’s take a dive into what exactly caused this whole debacle.

CDK’s Ransom

CDK’s Logo

The cybercriminal group, Blacksuit, is responsible for a cyberattack on a nationwide software used by many car dealerships. The company, CDK Global, operates what is called a DMS or dealer management system.

This system allows car dealerships to run billing and print financial reports, submit repair orders, and ratify bill of sales and contracts. The sudden loss and ongoing disruption of this important software is certainly to effect these businesses for years.

Unfortunately as a side effect for the company itself, they are unable to input any ongoing data into the system until this is resolved. This will create a substantial backlog that will force dealerships to resubmit their information to get everything up to date.

With it’s hands tied, CDK must either pay these attackers a ransom or submit and ‘restart’ their product with new software on top of losing business.

Instantly calculate the time you can save by automating compliance

Whether you’re starting or scaling your security program, Vanta helps you automate compliance across frameworks like SOC 2, ISO 27001, ISO 42001, HIPAA, HITRUST CSF, NIST AI, and more.

Plus, you can streamline security reviews by automating questionnaires and demonstrating your security posture with a customer-facing Trust Center, all powered by Vanta AI.

Instantly calculate how much time you can save with Vanta.

Terrible Lessons Hard Earned

With CDK’s software estimated to still be five days from being operational, the pressure mounts from stacking loss of business to its customers. It is important for any other business owners or security specialists to see the gravity of this issue.

Another issue arises from this as well, other competitors or businesses will always see this attack on the companies reputation. This is seen in many other incidents as getting users to trust your product again can be quite challenging.

It’s important to remember however that we can proactively help our teams prevent attacks like this. Steady reminders, red teaming, and constant vigilance at the user level is always the pinnacle of protection.

Thanks for tuning in everyone, remember to subscribe, share our newsletter and follow us on our social media! We love to hear from you guys!

TheCyberShortcut’s Twitter

Come follow our Twitter page!

x.com/cybershortcut_1

TheCyberShortcut’s Instagram

See Instagram photos and videos from TheCyberShortcut (@thecybershortcut)

www.instagram.com/thecybershortcut

Reply

or to participate.