MBN

NEWS

CDK: US car dealers are feeling the pain of CDK cyberattack ...

Listeria outbreak: Chicopee market taking precautions amid deli meat listeri...
Published Time: 24.06.2024 - 21:04:53 Modified Time: 24.06.2024 - 21:04:53

BlackSuit, an established ransomware group, was responsible for the attack on CDK Global, the tech news site Bleeping Computer reported Saturday. On Friday, Bloomberg reported that the group involved in the attack demanded “tens of millions of dollars in ransom” from the company, which provides software to “nearly 15,000” auto dealer locations. CDK, cdk cyber attack, cdk cyber attack update


The effects of the ransomware attack are being felt by U.S. car dealers less than a week after CDK detected a cyberattack and announced that “out of an abundance caution and concern” for its customers, it had “shut down most of [its] systems,” according a statement provided to CyberScoop from Lisa Finney, CDK’s senior manager of external communications.

BlackSuit, an established ransomware group, was responsible for the attack on CDK Global, the tech news site Bleeping Computer reported Saturday. On Friday, Bloomberg reported that the group involved in the attack demanded “tens of millions of dollars in ransom” from the company, which provides software to “nearly 15,000” auto dealer locations.

Allan Liska, a threat intelligence analyst at Recorded Future, told CyberScoop that BlackSuit was involved, and referred to the group as a “mid-sized ransomware as a service offering” that nevertheless has “had a number of big victims.”

Neither Finney nor Brookfield Partners, CDK’s parent company, responded to requests for comment on the latest fallout and payment demands Monday morning.

BlackSuit emerged as a distinct ransomware entity in early April or May of 2023, according to SentinelOne, and could be a rebrand of the dormant Royal ransomware operation. A joint November 2023 advisory from the Cybersecurity and Infrastructure Security Agency reported that Royal targeted more than 350 known victims worldwide between September 2022 and November 2023 and pushed for more than $275 million in extortion demands.

BlackSuit has yet to mention anything CDK Global on the website it uses to post messages alleged targets and the data of targets that did not pay. BlackSuit has claimed 76 victims since May 2023, most of them from the United States, a representative of the cybersecurity firm KELA told CyberScoop in an email Monday. According to data collected by the cybersecurity firm Check Point, the group reported on its site 18 victims in May and seven so far in June.

NEWS