More than 15,000 car dealerships across North America are facing frustrated customers and lost sales as a major software provider, CDK Global, is grappling with a cyberattack that has crippled their systems for days. Dealerships have resorted to using pen and paper to create sales contracts, and are unable to register vehicles with government agencies like the DMV. This has led to frustrated customers and a backlog at government offices. The breach has also resulted in lost sales for dealerships, with vehicles sitting idle on lots. CDK's brand has suffered irreparable damage, and the financial losses are significant.
While security breaches are inevitable, it's crucial for organizations to prioritize post-breach resilience. This requires a different approach than proactive security measures. Post-breach resilience is about rapidly isolating systems to contain risk, restoring them quickly to ensure business continuity, and communicating effectively with internal and external stakeholders. It requires a programmatic approach to security, with contingency planning, routine drills, and equal focus on prevention and mitigation.
During my conversations with CISOs and CIOs, I always advocate for a comprehensive cybersecurity approach that combines proactive info security and post-breach resilience, considering systems, tools, and people perspectives. The CDK Global incident serves as a stark reminder: in today's digital landscape, it's not just about preventing breaches—it's about being prepared to respond swiftly and effectively when they occur.