The CDK Global hack has highlighted the risks of relying on a single software vendor in an industry. The cyberattack disrupted management systems at equipment and auto dealerships across North America, causing significant business losses. CDK Global reportedly paid a $25 million ransom to the hackers, identified as the BlackSuit ransomware gang. The attack forced dealerships to revert to manual processes, severely impacting their operations. This incident underscores the vulnerability of industries dependent on a single software provider.
The cyberattack on CDK Global occurred on June 19, 2024, prompting the company to shut down most of its systems “out of an abundance of caution”. CDK Global’s software is used by more than 15,000 auto dealerships across North America to manage various operations, including vehicle acquisitions, sales, financing, insuring, repairs, and maintenance. The initial attack was followed by a second breach, exacerbating the disruption.
The attackers likely used a combination of phishing and exploiting software vulnerabilities to gain initial access. Once inside, they moved laterally across the network, using tools to access additional systems and sensitive data. The final stage involved deploying ransomware, encrypting files, and demanding a ransom for decryption keys. This incapacitated CDK’s operations, affecting all dealership services reliant on their systems.
The BlackSuit ransomware gang, responsible for the attack, is a cybercriminal team that spun off from an older, Russian-linked hacking group called RoyalLocker. The attack has raised concerns about the security of industries heavily reliant on a single software provider and the growing threat of cybercriminals exploiting always-on VPN connections to infiltrate internal networks.
Our Innsights : At InnoWave, we understand the importance of robust cybersecurity measures to protect your business from such threats. Our comprehensive cybersecurity solutions are designed to safeguard your systems, prevent unauthorized access, and ensure business continuity. With InnoWave, you can trust that your operations are secure, and your data is protected from cybercriminals. Don’t wait for a breach to happen. Partner with InnoWave and fortify your cybersecurity defenses today!
Check out our Cybersecurity offer here!
Image credits : DAVID PAUL MORRIS/BLOOMBERG NEWS