Connect with us

Hi, what are you looking for?



Disruptions at Many Car Dealerships Continue as CDK Hack Worsens

Car dealership software provider CDK Global was in the process of restoring services impacted by a cyberattack when it discovered an additional hack.

CDK car dealership hack

Car dealerships across the United States will likely have to deal with disruptions for several more days after software provider CDK Global detected an additional cyber incident.

CDK Global, which provides software solutions to nearly 15,000 dealers across North America, announced on June 19 that it had shut down most of its systems while investigating a cyberattack. 

The company provides dealer management, retail, customer relationship management, finance and insurance, network and communication, and intelligence services. 

Dealerships use CDK products to sell cars and car parts, as well as for a wide range of other operations, and the cyberattack has caused significant disruptions for many companies. While some have resorted to pen and paper, others said they were forced to halt most of their operations. 

In an update shared on the afternoon of June 19, CDK said it had already started restoring systems impacted by the hack.

However, in the evening of the same day the company “experienced an additional cyber incident” and decided to again shut down most of its systems. 

“In partnership with third party experts, we are assessing the impact and providing regular updates to our customers. We remain vigilant in our efforts to reinstate our services and get our dealers back to business as usual as quickly as possible,” a CDK spokesperson told SecurityWeek

Customers have been told that systems will likely not be available for several days. 

Advertisement. Scroll to continue reading.

No other information has been shared, but the attack’s highly disruptive nature suggests that it could involve ransomware. No known ransomware group appears to have taken credit for the attack and the company did not confirm or deny the involvement of ransomware when contacted by SecurityWeek.

Related: Biden Administration Will Investigate National Security Risks Posed by Chinese-Made ‘Smart Cars’

Related: Thieves Use CAN Injection Hack to Steal Cars

Related: 185,000 Individuals Impacted by MOVEit Hack at Car Parts Giant AutoZone 

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Learn how to utilize tools, controls, and design models needed to properly secure cloud environments.


Event: ICS Cybersecurity Conference

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.


People on the Move

SaaS security company AppOmni has hired Joel Wallenstrom as its General Manager.

FTI Consulting has appointed Brett Callow as Managing Director in its Cybersecurity & Data Privacy Communications practice.

Mobile security firm Zimperium has welcomed David Natker as its VP of Global Partners and Alliances.

More People On The Move

Expert Insights