Drivesure Data Breach


Despite the fact that normally invest in schooling their personnel and security actions to protect info from cybercriminals, attacks even now happen. This kind of was the circumstance with a new attack that still left millions of personal details right from a company referred to as drivesure upon hacking message boards.

The Illinois-based car dealership provider drivesure, which will specializes in worker training courses and client retention, experienced a data break that exposed the information of about 3. 2 million customers. According to a post on January 4 this season by the reliability vendor Risk Based Protection, online hackers dumped multiple directories of database files on a dark web online community. The data included names, house and cellphone numbers, email addresses, messages among dealerships and clients, car or truck make and model and VIN quantity, service records and damage claims. In addition , over 93, 1000 bcrypt hashed passwords were released. Although bcrypt is actually a strong security method in comparison with older strategies like SHA1 and MD5, hackers are able to use scripts to brute-force the hashed passwords.

The 3. two million info things were printed on Raidforums by a great attacker making use of the handle “pompompurin. ” In addition to the individual database, cyber-terrorist released a 22GB record that was comprised of the DriveSure MySQL databases. The remove exposed 91 sensitive databases, including PII, damage needs, extended car facts and dealer and warranty information. As a result of the leak, you aren’t a DriveSure account must look into changing their password instantly.


Please enter your comment!
Please enter your name here