Early this week, staff for the car dealership software-as-a-service provider, CDK Global identified a cyber incident that forced the company to take several of their servers offline to avoid additional exploitation. CDK services are used by over 15,000 car dealerships in North America and are responsible for accounting, payroll, parts and service orders, and many other functions necessary to keep dealerships running. As the investigation is still ongoing, it remains unclear as to the extent of the attack or which threat group is responsible for the incident.
Crown Equipment manufacturing halted by cyberattack
Recently, officials for the heavy equipment manufacturer, Crown Equipment confirmed that they had fallen victim to a cyberattack that forced their internal network offline and brought their manufacturing to a halt. It is believed that this network breach stemmed from an employee allowing unauthorized access to their system, though company security protocols limited the amount of sensitive data that could be accessed. As the manufacturing standstill pushes into its second week, the impact of this attack on customers who rely on Crown for their daily tasks continues to grow.
AMD and Apple breaches tied to known hacker
At the beginning of the week, a known hacker going by the alias IntelBroker has claimed responsibility for the recent data breaches of both AMD and Apple by posting screenshots of the stolen content on BreachForums. The stolen data from AMD allegedly contains everything from employee records to sensitive IP data and information on upcoming AMD products. Meanwhile, the posting for the Apple breach claims to have source code for several Apple internal tools including AppleConnect-SSO; Apple-HWE-Confluence-Advanced; and AppleMacroPlugin.
Advanced Auto Parts employee data leaked in Snowflake attacks
Officials for Advanced Auto Parts have finally confirmed that a significant amount of employee data was stolen during a breach at the end of May and was posted to a known hacker forum at the beginning of June. The breach itself occurred on a third-party cloud database and did not compromise any Advanced Auto Parts internal systems. The company is providing credit and identity monitoring to all affected employees and for any potentially affected customers.
BlackBasta ransomware strikes circuit board manufacturer
The threat actors behind the BlackBasta ransomware group have recently published a 530GB data trove of stolen data from the circuit board assembly manufacturer, Keytronic. It is believed that the stolen data encompasses financial information, intellectual property documents, and sensitive employee records. All production facilities for Keytronic have been temporarily shut down due to the attack and will likely remain so until the investigation has completed.
