CDK Global hack attributed to BlackSuit ransomware

SC StaffJune 24, 2024

Image of ransomware, computer language, circuit board pattern over data server room

(Adobe Stock)

Attacks against CDK Global, which has resulted in widespread disruptions in North American car dealerships since Tuesday, have been linked to the BlackSuit ransomware operation, BleepingComputer reports.

CDK Global was also noted by sources close to the matter to have entered negotiations with the threat operation, which was previously associated by the FBI and Cybersecurity and Infrastructure Security Agency with the Royal ransomware gang due to similar techniques and encryptor code. Such claims have not yet been confirmed nor denied by CDK Global but the software-as-a-service provider warned about social engineering attacks being targeted at dealerships, as well as a second intrusion that caused the complete shutdown of its IT systems. Impact from the CDK Global breach has already been confirmed by Penske Automotive Group and Sonic Automotive, both of which have continued operations despite disruptions to their respective dealer management systems.

SC Staff

Network Security

Predator spyware operations weakened by crackdowns

SC StaffJuly 2, 2024

Operations of the Intellexa Alliance behind the Predator spyware were noted by cybersecurity experts to have significantly dwindled in the months following sanctions imposed by the Biden administration and other crackdown efforts exposing its infrastructure, reports CyberScoop.

Ransomware

Total CDK Global systems recovery imminent

SC StaffJuly 2, 2024

CRN reports that all U.S. car dealerships impacted by the crippling back-to-back ransomware attacks against CDK Global are expected to be reconnected to the software solutions provider's dealer management system between late Wednesday and early Thursday as the vendor seeks to completely restore impacted systems within the week.

Prudential sign on their headquarters building in New Jersey.

Ransomware

Toll of Prudential Financial hack exceeds 2.5M

SC StaffJuly 2, 2024

Major U.S. life insurance provider Prudential Financial had data from more than 2.556 million individuals compromised in an early February systems breach claimed by the ALPHV/BlackCat ransomware operation, which has already shut down operations following the theft of ransom from an affiliate that targeted Change Healthcare, according to BleepingComputer.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

CDK Global hack attributed to BlackSuit ransomware

Related

Predator spyware operations weakened by crackdowns

Total CDK Global systems recovery imminent

Toll of Prudential Financial hack exceeds 2.5M

Related Events

Preventing Ransomware: Key Trends and Guidance for the Second Half of 2024 and Early 2025

Ransomware attack lessons, from MOVEit and Doubledrive to MGM/Caesars

Cyber Resilience in the Ransomware and Wiper Era New Strategies for CISOs to Protect

Get daily email updates