Drivesure Car Dealership Info Breach

Companies that offer software or perhaps products to other businesses are often prone to data removes. This is true of your largest firms. However , scaled-down companies like car stores that depend on specialized services to run the business could find themselves by a greater risk for hacking attacks.

The type of company, drivesure, which provides support for car dealerships to help them build consumer loyalty, experienced a breach that still left the information of about 3. a couple of million people available online. The attack happened last December, plus the stolen info set included names, home addresses, telephone numbers, text messages and emails between dealers and their customers, VINs of cars and service records as well as more than 93, 1000 Bcrypt hashed passwords. Although bcrypt is believed more secure than old methods like MD5 and SHA1, it may still be incredible forced for the purpose of an extended time period when there are no safe guards in place, according to reliability vendor Risk Based Protection.

Hackers placed the databases on Raidforums hacking discussion boards late a month ago, according to Bleeping Pc. The post reportedly included multiple redirected here directories of data files, including those from your backend in the company’s MySQL databases that exposed 91 sensitive directories ranging from specific car dealership and products on hand information to revenue data, reports, boasts and customer data.