Cyber Blog

A hacker group claiming responsibility for breaching software company CDK Global is demanding tens of millions of dollars in ransom, Bloomberg reported.

CDK Global, which supplies software to car dealerships across North America, is reportedly considering paying the ransom, though discussions are ongoing and could change. This information comes from a source familiar with the situation..

The hackers are believed to be based in Eastern Europe.

CDK Global Shuts Down Car Dealership Software After Cyberattack

The cyber outage at CDK Global has now entered its third day, disrupting software management tools and operations at car dealerships nationwide.

CDK Global shut down most of its systems “out of an abundance of caution” for customers on Wednesday, spokesperson Lisa Finney said. Some systems were restored later that afternoon, only to be shut down again after another cyberattack, according to a letter sent to customers.

“Out of continued caution and to protect our customers, we are once again proactively shutting down most of our systems,” the letter stated. “We are currently assessing the overall impact and consulting with external third-party experts.”

The company has not provided an estimated timeline for when systems will be fully operational again. Dealerships continued to report issues with CDK systems on Friday.

CDK Global Works with 15,000 Retail Locations

Finney did not respond to questions about the number of dealerships affected. However, CDK’s website states the company works with more than 15,000 retail locations across North America.

As one of the leading providers of cloud-based software for dealerships, CDK’s tools assist with vehicle acquisitions, sales, financing, insurance, repairs, and maintenance. The company’s website also claims to offer a “three-tiered cybersecurity strategy to prevent, protect, and respond to cyberattacks.”