Drivesure Car Dealership Data Breach

Companies offering software or perhaps products to other web based often susceptible to data breaches. This is true of even the largest businesses. However , smaller sized companies just like car dealerships that rely on specialized products to run their very own business may find themselves in a greater exposure to possible hacking attacks.

One particular company, drivesure, which provides service plan for car dealerships to help them build customer loyalty, knowledgeable a breach that kept the information of approximately 3. two million persons available online. The attack occurred last December, and the stolen data set included names, house addresses, phone numbers, text messages and emails between dealers and the customers, VINs of vehicles and documents as well as more than 93, 500 Bcrypt hashed passwords. Even though bcrypt is viewed more secure than more mature methods like MD5 and SHA1, it could still be brute forced with regards to an extended period of time when you will discover no safe guards in place, in accordance to secureness vendor Risk Based Reliability.

Hackers submitted the repository on Raidforums hacking forums late last month, according to Bleeping Pc. The post reportedly included multiple http://vpnversed.com/ directories of data files, which includes those from backend for the company’s MySQL databases that exposed 91 sensitive sources ranging from specific dealership and products on hand information to revenue data, reports, remarks and customer data.