Drivesure Car Dealership Data Breach

Companies offering software or perhaps products to other businesses are often vunerable to data removes. This is true of your largest businesses. However , scaled-down companies like car dealers that count on specialized providers to run the business might find themselves in a greater risk for hacking attacks.

The sort of company, drivesure, which provides product for car dealerships to help these groups build customer loyalty, knowledgeable a breach that left the information of approximately 3. 2 million people available online. The attack happened last December, as well as the stolen data set included names, residence addresses, telephone numbers, text messages and emails between dealers and the customers, VINs of cars and documents as well as over 93, 500 Bcrypt hashed passwords. Even though bcrypt is recognized as safer than old methods like MD5 and SHA1, it could still be incredible forced with regards to an extended time frame when you will discover no shields in place, in accordance to protection vendor Risk Based Reliability.

Hackers published the data source on Raidforums hacking message boards late a month ago, according to Bleeping Computer system. The content reportedly included multiple directories of data files, which includes those from the backend belonging to the company’s MySQL databases that exposed 91 sensitive directories ranging from complete car dealership and products on hand information to revenue data, reports, promises and consumer data.

Leave a Comment

Your email address will not be published. Required fields are marked *