DriveSure Data Breach

DriveSure can be described as training platform that helps car stores to build buyer loyalty. It has many customers that subscribe to the training and course material. They offer their labels, addresses, cell phone numbers and e-mail to the web page.

In 12 , 2020, DriveSure suffered an information breach which lead to 26GB of private information getting downloaded and distributed on a hacking forum. This included two. 6 million unique emails, names, contact numbers and physical addresses. Car information was also revealed including makes, models, VIN numbers and odometer psychic readings.

The hackers made the DriveSure info available for cost-free on multiple hacking forums, so it was freely accessible to any person. The attackers left a 22GB folder which in turn contained DriveSure’s MySQL databases, exposing 91 sensitive databases.

PII was within the dump, along with damage cases, extended car details and dealer and warranty information. These were all prime meant for exploitation simply by other danger actors.

Above 93, 000 bcrypt hashed passwords were also made public. Even though stronger than SHA1 and MD5, bcrypt passwords could be brute-forced when downloaded from a server, Risk Based Reliability explained.

Working with a poor password can allow a great attacker of stealing your data from the machine, so is important to transform them as quickly as possible. In addition , the new good idea to wipe hard drive on your computer before disposing of it to stop any data from currently being accidentally or maliciously uncovered. You can do this employing a data devastation program or making a fresh installing of the operating system.

Let's Talk!

Tell us a bit about your idea. We’ll get back to you within one day and plan our next steps.