Drivesure Data Break

Car dealership service agency drivesure suffered a data breach last December that left 26GB of private details downloaded and shared on hacking message boards. The online hackers dumped multiple databases that contains names, handles, phone numbers, electronic mails between dealerships and customers and vehicle details which include makes, designs, VIN amounts, documents, destruction claims and service records. In addition , over 93, 500 bcrypt hashed security passwords were also released. The passwords will be cryptographically protected, but since they use bcrypt hashes (which are more robust than SHA1 and MD5) attackers can still brute-force them to gain get.

The cybercriminal known as “pompompurin” published the databases upon Raidforums cracking forum past due last http://vpnversed.com/data-rooms-comparison-for-the-best-choice/ month. The database files contained email usernames, email addresses and passwords. The threat actor also provided precise descriptions of the leaked databases and customer information, in respect to secureness vendor Risk Based Secureness, which 1st spotted the details dump.

The database of nearly three million Drivesure subscribers comprises of personal and financial information like license figures, credit card accounts and mortgage lender statements. It might be used for information theft, scam and other illegitimate activities. The compromise is another example of how data breaches can occur when small business owners use thirdparty software. The recent exergue of SolarWinds, Washington State’s auditor and Wind Lake Systems is another. These companies happen to be among those that sell program to help large organizations transfer large documents. Smaller businesses also use these thirdparty programs to regulate their inner networks and computers. Regardless of the best hard work of these businesses to protect all their customer data, they are vulnerable.