Drivesure Car Dealership Data Breach

Companies which provide software or products to other companies are often vunerable to data breaches. This is true of even the largest companies. However , small companies just like car dealers that rely on specialized providers to run the business might find themselves by a greater risk for hacking attacks.

One such company, drivesure, which provides product for car dealerships to help them build client loyalty, experienced a break that kept the information of approximately 3. 2 million people available online. The attack happened last December, and the stolen info set included names, house addresses, telephone numbers, text messages and emails between dealers and the customers, VINs of automobiles and documents as well as above 93, 500 Bcrypt hashed passwords. Though bcrypt is regarded as more secure than more aged methods just like MD5 and SHA1, it might still be incredible forced meant for an extended time frame when you will discover no shields in place, regarding to security vendor Risk Based Secureness.

Hackers placed the data source on Raidforums hacking message boards late a month ago, according to Bleeping Computer system. The post reportedly included multiple directories of data files, including those through the backend with the company’s MySQL databases that exposed 91 sensitive sources ranging from detailed board portal software store and products on hand information to revenue info, reports, demands and client data.