Group 1 Automotive issues statement on cybersecurity incident at CDK

HOUSTON, 24 June 2024 /PRNewswire/ — Group 1 Automotive, Inc. (NYSE: GPI) (“Group 1” or the “Company”), a Fortune 300 auto dealership with 202 locations in the US And United Kingdomannounced today that the cybersecurity incident recently experienced by third-party software provider CDK Global LLC (“CDK”) compromised Group 1’s business applications and processes in its US Operations based on CDK dealer systems.

In response, the Company immediately activated its cyber incident response procedures and proactively took steps to protect and isolate its systems from the CDK platform. Despite the CDK service outage, all U.S. Group 1 dealers will continue to conduct business using alternate processes until CDK dealer systems are available again. The Company’s dealers in the United Kingdom do not use the CDK dealers’ systems and are therefore not affected by the CDK service outage.

CDK has advised that restoration of the dealer management system is expected to take several days, not weeks. The timing of restoration of other affected CDK applications is currently unclear. Group 1’s ability to determine the material impact of the CDK incident and resulting service outage, if any, will ultimately depend on a number of factors, including when and to what extent the company restores its access to CDK dealers’ systems. Group 1 is closely monitoring this situation and will take further action as necessary.

“Our employees are relentlessly focused on providing the best customer experience possible. Their efforts have been nothing short of exemplary. We want to thank our team, our customers and our partners for their patience as we navigate this outage,” said Daryl Kenningham, President and CEO of Group 1.

ABOUT GROUP 1 AUTOMOTIVE, INC.

Group 1 owns and operates 202 Car dealerships, 264 Franchises and 42 Collision centers in The United States and that Great Britain this offer 35 car brands. Through its dealers and its omni-channel platform, the company sells new and used cars and light trucks, arranges related vehicle financing, sells service and insurance contracts, provides car maintenance and repair services, and sells vehicle parts.

Group 1 publishes additional information about the Company, its business and its operating results at www.group1corp.com, www.group1auto.com, www.group1collision.com, www.acceleride.com, www.facebook.com/group1autoAnd Twitter.com/group1auto.

FORWARD-LOOKING STATEMENTS

This press release contains “forward-looking statements” within the meaning of the Private Securities Litigation Reform Act of 1995, which are statements regarding future, not past, events based on our current expectations and assumptions regarding our business, the economy and other future conditions. These statements relate to Group 1’s expectations or beliefs regarding future events, actions or performance, including the impact of the CDK cybersecurity incident on Group 1, including its financial condition and results of operations. Factors that could affect future developments and performance include access to the CDK platform and CDK’s ability to contain and remediate the cybersecurity incident, as well as other risks and factors included in the documents Group 1 has filed with the Securities and Exchange Commission.

Contact for investors:
Terry Bratton
Manager, Investor Relations
Group 1 Automotive, Inc.
[email protected]

Media contact:
Pete DeLongchamps
Senior Vice President, Manufacturer Relations, Financial Services and Public Affairs
Group 1 Automotive, Inc.
[email protected]
or
Clint Woods
Pierpont Communications, Inc.
713-627-2223
[email protected]

View original content: https://www.prnewswire.com/news-releases/group-1-automotive-provides-statement-on-cdk-cybersecurity-incident-302179875.html

Never miss a story from Group 1 Automotive, Inc.