DriveSure is a training program that helps car stores to build client loyalty. It has countless customers that subscribe to it is training and course material. They offer their labels, addresses, phone numbers and e-mail to the web page.

In 12 , 2020, DriveSure suffered an information breach which triggered 26GB of private information staying check this downloaded and distributed on a cracking forum. This included a few. 6 , 000, 000 unique emails, names, phone numbers and physical addresses. Car or truck information was also open including makes, models, VIN numbers and odometer readings.

The cyber-terrorist made the DriveSure data available for no cost on multiple hacking forums, so it was freely accessible to anyone. The attackers left a 22GB folder which will contained DriveSure’s MySQL databases, revealing 91 sensitive databases.

PII was as part of the dump, along with damage cases, extended car details and dealer and warranty facts. These were most prime with respect to exploitation by simply other threat actors.

Above 93, 000 bcrypt hashed passwords were also made public. Though stronger than SHA1 and MD5, bcrypt passwords can still be brute-forced when downloaded from a server, Risk Based Protection explained.

Working with a poor password can allow an attacker to steal your computer data from the machine, so it is important to switch them immediately. In addition , it’s a good idea to wipe hard drive on your hard drive before getting rid of it to stop any data from becoming accidentally or perhaps maliciously subjected. You can do this through a data damage plan or building a fresh installation of the main system.

Print Friendly, PDF & Email