CDK Global announced the cyber attack on its systems and indicated that they are currently assessing the overall impact, with no estimated time for full restoration. Despite extensive testing, only core document management and digital retail systems were restored later on the day of the attack.
The exact number of affected dealerships was not specified, but CDK Global’s SaaS platform services nearly 15,000 dealerships. Employees have raised concerns about the potential for threat actors to gain control of internal dealership networks. CDK’s software requires dealerships to configure an always-on VPN for data center access, which could be leveraged by attackers to control the network. As a precaution, CDK has advised customers to disable their VPNs temporarily.
This incident highlights the vulnerabilities within interconnected dealership networks and the critical need for robust cybersecurity measures. The identity of the threat actor remains unknown, and CDK Global continues to work on resolving the situation while conducting extensive tests on other applications.
At the time of writing, the full extent of the attack’s impact is still being assessed, and updates will be provided as more systems are brought back online. The incident underscores the growing threat of cyber attacks on essential service providers and the importance of maintaining stringent cybersecurity protocols to protect sensitive operational data.
Source: Cyber Daily
To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net, or you can try yourself using check.website.