{"id":4131,"date":"2024-06-20T16:51:41","date_gmt":"2024-06-20T21:51:41","guid":{"rendered":"https:\/\/www.darkreading.com\/application-security\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyber-incident"},"modified":"2024-06-20T16:51:41","modified_gmt":"2024-06-20T21:51:41","slug":"thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/06\/20\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack\/","title":{"rendered":"Thousands of Car Dealerships Stalled Out After Software Provider Cyberattack"},"content":{"rendered":"
<\/a><\/div>\n
<\/div>\n

A supply chain cyberattack on software provider CDK Global forced thousands of car dealerships to shut down Wednesday, a traditionally busy day for sales with the Juneteenth holiday.<\/span><\/p>\n

Reports said the first dealerships started getting booted offline around 2 a.m. Eastern Time. Some<\/span> shut down altogether<\/a><\/span>, unable to access critical information, while others maintained some services by relying on paper records.<\/span><\/p>\n

CDK provided a statement to Dark Reading explaining that the company, which serves 15,000 dealerships, took systems offline as a precaution but said they have since been restored.<\/span><\/p>\n

“We are continuing to conduct extensive tests on all other applications, and we will provide updates as we bring those applications back online,” CDK said in its statement. “Our first priority is always the security of our customers, and our actions reflect our obligation to them as a trusted partner.”<\/span><\/p>\n

The specific nature of the <\/span>supply chain cyber incident<\/a><\/span> and whether systems have been restored remains unclear. However, Roger Grimes, data-driven defense evangelist with KnownBe4, said he suspects ransomware.<\/span><\/p>\n

“It hasn’t been released what type of ‘cyber incident’ this is, but there’s a good chance it’s related to ransomware,” Grimes said in a statement. “When more details are released, I hope part of the details include how the cyber threat made its way into CDK’s systems (e.g., social engineering, unpatched software or firmware, etc.). Because in order to mitigate future occurrences you need to start with how the current incident was caused.”<\/span><\/p>\n

According to Andrew Costis, chapter lead on the adversary research team at AttackIQ, the cyber incident is far from over for dealerships that rely on CDK software. He suggested there is more than one cyber incident impacting the software maker.<\/span><\/p>\n

“CDK is suffering from not one, but two cyberattacks that have caused the SaaS provider to shut down IT systems,” he told Dark Reading in a statement. “Given the extensive reliance on this third-party vendor, the fallout from this attack reverberates throughout the entire automotive industry.”<\/span><\/p>\n

Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

A supply chain cyberattack on software provider CDK Global forced<\/p>\n","protected":false},"author":12,"featured_media":4132,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[809],"class_list":["post-4131","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-dark-reading"],"featured_image_urls":{"full":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?fit=2560%2C1414&ssl=1",2560,1414,false],"thumbnail":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?resize=150%2C150&ssl=1",150,150,true],"medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?fit=300%2C166&ssl=1",300,166,true],"medium_large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?fit=640%2C353&ssl=1",640,353,true],"large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?fit=640%2C354&ssl=1",640,354,true],"1536x1536":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?fit=1536%2C849&ssl=1",1536,849,true],"2048x2048":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?fit=2048%2C1131&ssl=1",2048,1131,true],"chromenews-featured":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?fit=1024%2C566&ssl=1",1024,566,true],"chromenews-large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?resize=825%2C575&ssl=1",825,575,true],"chromenews-medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?resize=590%2C410&ssl=1",590,410,true]},"author_info":{"display_name":"Dark Reading","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/darkreading\/"},"category_info":"Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","jetpack_featured_media_url":"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/thousands-of-car-dealerships-stalled-out-after-software-provider-cyberattack-scaled.jpg?fit=2560%2C1414&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4131","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=4131"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4131\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media\/4132"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=4131"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=4131"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=4131"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}