CDK Global hacked again while recovering from first cyberattack

pRatel RAT targets outdated Android phones in ransomware attacksppPhoenix UEFI vulnerability impacts hundreds of Intel PC modelsppCDK Global outage caused by BlackSuit ransomware attackppLinux version of RansomHub ransomware targets VMware ESXi VMsppMicrosoft Photos update brings requested features to Windows 11ppFacebook PrestaShop module exploited to steal credit cardsppUpgrade your laptop with 87 off this refurbished Microsoft Surface 3ppCDK Global outage caused by BlackSuit ransomware attackppHow to enable Kernelmode Hardwareenforced Stack Protection in Windows 11ppHow to use the Windows Registry EditorppHow to backup and restore the Windows RegistryppHow to open a Windows 11 Command Prompt as AdministratorppHow to start Windows in Safe ModeppHow to remove a Trojan Virus Worm or other MalwareppHow to show hidden files in Windows 7ppHow to see hidden files in WindowsppRemove the Theonlinesearchcom Search RedirectppRemove the Smartwebfindercom Search RedirectppHow to remove the PBlock adware browser extensionppRemove the Toksearchesxyz Search RedirectppRemove Security Tool and SecurityTool Uninstall GuideppHow to Remove WinFixer Virtumonde Msevents TrojanvundoppHow to remove Antivirus 2009 Uninstall InstructionsppHow to remove Google Redirects or the TDSS TDL3 or Alureon rootkit using TDSSKillerppLocky Ransomware Information Help Guide and FAQppCryptoLocker Ransomware Information Guide and FAQppCryptorBit and HowDecrypt Information Guide and FAQppCryptoDefense and HowDecrypt Ransomware Information Guide and FAQppQualys BrowserCheckppSTOPDecrypterppAuroraDecrypterppFilesLockerDecrypterppAdwCleanerppComboFixppRKillppJunkware Removal ToolppeLearningppIT Certification CoursesppGear GadgetsppSecurityppBest VPNsppHow to change IP addressppAccess the dark web safelyppBest VPN for YouTubeppppUpdate added to bottom of the articleppCar dealership SaaS platform CDK Global suffered an additional breach Wednesday night as it was starting to restore systems shut down in an previous cyberattackppCDK Global is a softwareasaservice platform that provides a full suite of applications to handle a car dealerships operation including sales back office financing inventory and service and supportppCDK became aware that they were breached Tuesday night causing them to shut down their data centers IT systems and login systemsppThe attack led to a massive outage as car dealerships could not conduct their normal operations including servicing or selling vehiclesppLast night the company had begun to restore services bringing their Unifi modern login service back online though other systems were still being restoredppUnfortunately as CDK was restoring its services they were once again forced to shut down their systems after suffering another breach late yesterday eveningppWe are sorry to inform you that we experienced an additional cyber incident late in the evening on June 19th reads a CDK notification seen by BleepingComputerppOut of continued caution and to protect our customers we are once again proactively shutting down most of our systems We are currently assessing the overall impact and consulting with external 3rd party expertsppBrad Holton of Proton Dealership IT owned by CDKcompetitor Reynolds and Reynolds told BleepingComputer that all of his customers remain down today with little information being shared by CDK about the incident with customersppThe outages are affecting some of the largest automotive dealers in the world such as Penske Automotive Group who says it has impacted their commercial truck dealership Premier Truck GroupppOur Premier Truck Group business utilizes CDK and its systems are disrupted The commercial truck dealership business has lower volumes than the automotive business and principally serves business customers Penske Automotive Group told BleepingComputerppPremier Truck Group has implemented its business continuity response plans and continues to operate through manual processes developed to respond to such incidentsppA more recent update from CDK as seen by BleepingComputer says they aim to bring systems back online on Friday June 21ppHowever cybersecurity and IT professionals in the automotive industry have told BleepingComputer that they believe CDK is moving too fast in bringing services back online potentially increasing the risk to its customersppWhile the outages are significantly impacting the car sales industry there is concern that CDK is not properly investigating the scope of the breach before bringing servers back onlineppNot properly mitigating a breach could lead to further cyberattacks as evidenced by last nights second breach and a greater risk of theft of customer datappWhile this is affecting car dealerships it is also affecting customers who want to purchase a new car or service an existing oneppBleepingComputer was contacted by multiple customers yesterday who attempted to purchase a car only to be told that systems were down and that they could not be helpedppAs the entire process for purchasing a car including inventory vehicle registration and financing is handled by CDKs platform dealerships cannot conduct sales or are forced to manual processesppSimilar stories were shared by car owners looking to service their cars with dealerships warning that there would be delays in receiving parts due to systems being downppUpdate 62024 1PM ET A new CDK status update shown below says that they are no longer able to provide an estimate as to when systems will be restored and the outage will likely continue for several mode daysppIf you are not aware we experienced an additional cyber incident late in the evening on June 19ppWe continue to act out of caution and to protect our customers we have taken down most of our systems  Do not attempt to access the DMS until we can confirm the system is secure Digital Retail and CDK phones continue to be functional ppAt this time we do not have an estimated time frame for resolution and therefore our dealers systems will not be available likely for several daysppAs of now our Customer Care channels for support remain unavailable as a precautionary measure to maintain security It is a high priority to reinstate these services as soon as possibleppAlong with the Critical Situation emails we are providing updates in Unify and have two phone numbers to contact CDK for the latest recorded update CDK GlobalppCDK Global spokesperson Lisa Finney told BleepingComputer that the company is working with thirdparty experts to restore services as soon as possibleppLate in the evening of June 19 we experienced an additional cyber incident and proactively shut down most of our systems Finney told BleepingComputerppIn partnership with third party experts we are assessing the impact and providing regular updates to our customers We remain vigilant in our efforts to reinstate our services and get our dealers back to business as usual as quickly as possibleppCDK warns threat actors are calling customers posing as supportppCDK Global cyberattack impacts thousands of US car dealershipsppCDK Global outage caused by BlackSuit ransomware attackppAI platform Hugging Face says hackers stole auth tokens from SpacesppAscension redirects ambulances after suspected ransomware attackppNot a member yet Register NowppCDK Global outage caused by BlackSuit ransomware attackppRatel RAT targets outdated Android phones in ransomware attacksppTerms of Use Privacy Policy Ethics Statement Affiliate DisclosureppCopyright 2003 2024 Bleeping Computer LLC All Rights ReservedppNot a member yet Register NowppRead our posting guidelinese to learn what content is prohibitedp