US Car Industry Struck by Cyber Attack

( – A data provider servicing thousands of car dealership in the U.S. and Canada reported a “cyber incident” where millions of customers’ data and personal information could have been compromised.

Hackers managed to breach CDK Global’s digital security protocols not just once but twice, prompting the company to shut down its operations for damage control and assessment. CDK Global managed to get its systems back up after the first attack, but had to shut them down again after the second hack.

The impacted companies include Kia, the BMW North America group, Toyota, and Stellantis, which manufactures Dodge and Jeep automobiles. Ford, another of the companies impacted by the hack, said that its dealers had alternative processes in place that allowed them to continue to service customers. Other dealers faced problems registering new vehicles with state regulators, as many used the CDK system for plate registration and title work.

Dealerships who used CDK Global software were forced to roll back their operations to pen and paper for auto repairs and car sales while they waited for the system to get back up online again. A thread on Reddit revealed that dealers had to come up with creative solutions to help continue operations, such as using Excel spreadsheets and Post-It notes, and avoiding large transactions.

In a statement sent to media outlets, CDK Global said that it proactively shut down most of its systems “Out of an abundance of caution and concern for our customers.” The company added that it is “working diligently to get everything up and running as quickly as possible.” CDK also said that it expects the system to be down for several days, and could not provide a timeline as to when it would be up again. As of press time, the system is still currently down.

The scope of the hack is also still unknown, as is the person or group behind the cyberattacks.

Copyright 2024,