A cyber-attack on software provider CDK Global upended operations at car dealerships across the US on 19 June. CDK spokesperson Lisa Finney said the company shut down most of its systems “out of an abundance of caution" for customers. By that afternoon, the company had restored its core document management system and digital retailing solutions. "We are continuing to conduct extensive tests on all other applications, and we will provide updates as we bring those applications back online," Finney said in an emailed statement.
Finney did not respond to questions on how many dealerships were impacted, but CDK’s website says the company works with more than 15,000 retail locations across North America.[1]
So, what does CDK Global do?
One of the leading providers of cloud-based software to dealerships in the country, CDK's software helps dealerships manage vehicle acquisitions, sales, financing, insuring, repairs and maintenance. The company's website says it offers a “three-tiered cybersecurity strategy to prevent, protect and respond to cyberattacks.”
Why are car dealerships targeted by cyber-attacks?
The incident follows a cyber-attack against Findlay Automotive Group last week. The automotive group, which operates in five states, said the attack restricted its ability to conduct sales and service, according to reporting from the Las Vegas Review-Journal.
A 2023 report from CDK notes that cybercriminals are a growing threat to target car dealerships, with 17% of 175 surveyed dealers experiencing a cyber-attack or incident within the past year, up from 15% the year prior. Of those dealers, 46% said the cyberattack had a negative financial or operational impact.
Dealerships have been an attractive target because of the vast amounts of sensitive customer data they hold. From credit applications to customer financial information, dealerships hold a "treasure of information" to hackers, according to a 2023 article from insurance company Zurich North America.
"In addition, dealership systems are often interconnected to external interfaces and portals, such as external service providers," the report reads. And many dealerships "lack basic cyber security protections.".
This article is presented at no charge for educational and informational purposes only.
Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization. Our services can help detect cyber threats and vulnerabilities. For questions, comments, or assistance, please get in touch with the office directly at 1-844-492-7225 or feedback@redskyalliance.com
Reporting: https://www.redskyalliance.org/
Website: https://www.redskyalliance.com/
LinkedIn: https://www.linkedin.com/company/64265941
Weekly Cyber Intelligence Briefings:
REDSHORTS - Weekly Cyber Intelligence Briefings
https://register.gotowebinar.com/register/5378972949933166424
[1] https://www.msn.com/en-ca/money/companies/cdk-global-shuts-down-car-dealership-software-after-cyberattack/ar-BB1oxdkb?ocid=BingNewsSerp
Comments