(Reuters) – A group of hackers claiming responsibility for a cyberattack on CDK software systems has demanded millions of dollars in ransom to end the hacking attack that hit auto dealers across the United States, Bloomberg News reported on Friday.
The group behind the attack is believed to be based in Eastern Europe, according to the report, which cites sources familiar with the situation.
The auto trading technology and software provider planned to pay the ransom, Bloomberg News reported.
CDK did not immediately respond to a Reuters request for comment.
US auto retailers Sonic Automotive (NYSE:) and Penske Automotive reported disruption to their operations on Friday as a CDK cyber outage occurred for the third day in a row, affecting some dealers’ software management tools.
CDK, which supplies software to car dealerships, faced another cyber incident on Wednesday and shut down most of its systems in advance.
Sonic said its dealerships are open and working to minimize disruptions. The company said it could not determine whether the outage would impact its financial condition, but it did have a “negative impact” on its operations.
Penske said its Premier Truck Group business, which sells new and used commercial trucks, also uses CDK’s legacy dealer management system.
“Premier Truck Group has implemented its business continuity response plans and continues to operate at all sites using manual or alternative processes,” Penske said.
The commercial truck dealership business has lower sales volumes than Penske’s auto dealership business, which does not use CDK software.
Kia America also told Reuters it was working with affected dealers to mitigate the impact of the outage and continue operations as usual.
In its statement Thursday, CDK did not disclose how many dealerships were affected. But the company operates more than 15,000 retail locations across North America, according to its website.