DriveSure Data Breach

DriveSure is known as a training platform in order to car dealers to build customer loyalty. It has numerous customers that subscribe to their training and course material. They provide their titles, addresses, cell phone numbers and messages to the internet site.

In December 2020, DriveSure suffered a data breach which lead to 26GB of private information getting downloaded and distributed on a cracking forum. This included two. 6 , 000, 000 unique emails, names, phone numbers and physical addresses. Automobile information was also revealed including makes, models, VIN numbers and odometer blood pressure measurements.

The online hackers made the DriveSure info available for cost-free on multiple hacking discussion boards, so it was freely attainable to any person. The attackers broke up with a 22GB folder which usually contained DriveSureÔÇÖs MySQL databases, exposing 91 delicate databases.

PII was within the dump, as well as damage promises, extended car details and dealer and warranty data. These were pretty much all prime with regards to exploitation by other hazard actors.

Above 93, 500 bcrypt hashed passwords were also made public. Although stronger than SHA1 and MD5, bcrypt passwords can easily still be brute-forced when downloaded from a server, Risk Based Reliability explained.

Possessing poor password can allow a great attacker to steal important computer data from the server, so it is very important to adjust them immediately. In addition , the new good idea to wipe the hard drive on your computer before getting rid of it to avoid any data from getting accidentally or perhaps maliciously subjected. You can do this through a data devastation program or making a fresh installing of the main system.

Leave a Comment

Adresa ta de email nu va fi publicată. Câmpurile obligatorii sunt marcate cu *

Shopping Cart