A ransomware attack on CDK Global, a major software provider for automotive dealerships, has paralyzed operations at over 200 dealerships across the United States for the second time in two years.
Impact
Affected dealerships cannot process sales, access customer records, order parts, or manage service appointments. Some have reverted to paper-based operations, while others have temporarily closed. Estimated losses exceed $50 million per day industry-wide.
The Attack
The BlackCat ransomware group claimed responsibility, demanding a $30 million ransom in Bitcoin. CDK Global says it is working with cybersecurity firm Mandiant and the FBI to investigate and restore systems.
Lessons for Businesses
- Supply chain attacks are devastating — one vendor compromise affects thousands
- Business continuity plans must include extended system outages
- Offline backup processes should be tested regularly
- Cyber insurance premiums for auto dealers have doubled since 2024
The incident highlights the fragility of industries that rely on a small number of software providers for critical operations.
