Drivesure Car Dealership Data Breach

Companies offering software or perhaps products to other businesses are often at risk of data breaches. This is true of even the largest firms. However , more compact companies just like car dealerships that depend on specialized solutions to run their particular business might find themselves by a greater risk for hacking attacks.

One company, drivesure, which provides support for car dealerships to help them build consumer loyalty, knowledgeable a infringement that kept the information of around 3. two million people available online. The attack occurred last December, as well as the stolen data set included names, house addresses, telephone numbers, text messages and emails between dealers and the customers, VINs of cars and documents as well as more than 93, 500 Bcrypt hashed passwords. Even though bcrypt is regarded as board portal software more secure than older methods like MD5 and SHA1, it can still be brute forced with regards to an extended time frame when you will find no safety measures in place, corresponding to security vendor Risk Based Security.

Hackers submitted the database on Raidforums hacking discussion boards late last month, according to Bleeping Computer system. The post reportedly included multiple directories of data files, including those from your backend from the company’s MySQL databases that exposed 91 sensitive directories ranging from detailed car dealership and inventory information to revenue data, reports, cases and consumer data.

Leave a Reply

Your email address will not be published. Required fields are marked *