Restored CDK service for a select group of automobile dealerships
In June 2023, CDK Global, a leading provider of software and digital solutions for the automotive retail industry, fell victim to a cyberattack that caused critical disruptions for the majority of its car dealership customers across North America. The attack, which occurred on June 19, resulted in consequences extending into a second week.
Five major car dealers - Sonic Automotive, Penske Automotive Group, AutoNation, Group 1 Automotive, and Lithia Motors - filed cyber incident disclosures with the Securities and Exchange Commission, each on different days: Sonic Automotive and Penske Automotive Group on Friday, and AutoNation, Group 1 Automotive, and Lithia Motors on Monday.
CDK Global has remained tight-lipped about the nature of the attack and its recovery timeline, repeatedly declining to answer questions on these matters. However, the company did set up an automated voice message service to provide updates to customers and created a dealer resource center with commonly used documents and forms to support sales and service efforts.
As the recovery process progressed, CDK Global began bringing live additional applications, including customer relationship management and service solutions. By July 4, 2023, access for nearly all affected dealerships had been restored.
The cyberattack had significant financial and legal repercussions for CDK and impacted dealerships. Lawsuits alleging negligence and estimated financial losses of around $605 million for dealers within the first two weeks were reported. Despite the immediate recovery, the broader impact of the 2023 cyber incidents, including CDK's, is still being realized globally, with experts noting the growing sophistication of cybercrime and the evolving challenges for long-term recovery.
CDK Global's systems that dealers rely on include sales, customer relationship management, parts, inventory, and accounting functions. The company provides software to more than 15,000 car dealer customers across North America. Post-recovery, CDK continues to provide updates to customers regarding the recovery process.
Many car dealers resorted to analog alternatives during CDK Global's outage. As of mid-2025, there are no new reports indicating further ongoing disruptions to CDK Global’s services. The company appears to have stabilized post-recovery, but the incident remains a significant case study in ransomware impact and has likely influenced stronger cybersecurity and insurance measures within affected sectors.
[1] Source: TechCrunch, June 2024 [2] Source: Automotive News, July 2023 [3] Source: Cybersecurity Dive, June 2025
- In the aftermath of the cyberattack on CDK Global, the automotive, finance, and technology sectors faced a heightened awareness of the importance of robust cybersecurity measures.
- The cyberattack on CDK Global, a major player in the automotive retail industry, sparked discussions about the interconnections between industries and their vulnerabilities, especially in sectors heavily reliant on digital solutions.
- The cyberattack on CDK Global, a prominent provider of software for the automotive, finance, and transportation industries, serves as a warning for businesses to prioritize their cybersecurity infrastructure in an increasingly interconnected world.
- Following the cyberattack on CDK Global, which provides software solutions for the automotive, finance, and transportation industries,businesses across these sectors have been urged to reevaluate their cybersecurity strategies in light of growing cyber threats.
