CDK Global’s Massive IT Outage Due to BlackSuit Ransomware Gang – Car Dealerships Across North America in Chaos!

New York, USA – The BlackSuit ransomware gang has caused a massive IT outage at CDK Global, affecting countless car dealerships across North America. It has been reported by sources familiar with the matter that CDK is currently in negotiations with the ransomware gang to receive a decryptor and prevent the leak of stolen data.

This cyberattack has forced CDK to shut down its IT systems and data centers to contain the spread of the malware. Despite efforts to restore services, a second cybersecurity incident occurred, leading to the shutdown of all IT systems once again. CDK, a software-as-a-service (SaaS) provider utilized by car dealerships for various operational functions, has left car dealerships resorting to manual and alternate processes to conduct business.

The impact of the IT outage has extended to major car dealership companies like Penske Automotive Group and Sonic Automotive, disrupting critical dealership operations such as sales, inventory, and accounting functions. Both companies have implemented contingency plans to minimize disruption and ensure business continuity.

Furthermore, threat actors have been reported to be posing as CDK agents or affiliates, contacting dealerships to gain unauthorized systems access. This adds another layer of concern for both CDK and the affected dealerships, as they navigate the aftermath of the ransomware attack.

The BlackSuit ransomware gang, believed to be a rebrand of the Royal ransomware operation, has been linked to a series of cyberattacks on organizations worldwide. The FBI and CISA have highlighted similarities between Royal and BlackSuit in terms of tactics and coding, as well as the significant ransom demands made by the cybercriminals.

As CDK continues to negotiate with the ransomware gang and car dealerships adapt to manual operations, the cybersecurity landscape faces ongoing threats from sophisticated cybercrime syndicates like BlackSuit. The impact of such attacks serves as a stark reminder of the vulnerabilities in our digital infrastructure and the importance of robust cybersecurity measures.