Drivesure Suffers Drivesure Data Break

  • -
  • 26/07/2023

Car dealership vendor drivesure endured a data breach last Dec that triggered 26GB of personal information being downloaded and shared about hacking discussion boards, according to security supplier Risk Centered Security. The hacked data set browse around these guys included labels, addresses and phone numbers of more than 3. two million consumers as well as text message and electronic mails between dealers and their clients. Other information included vehicle VINs, service records and damage demands. Additionally , the hackers produced more than 93, 000 bcrypt hashed accounts that were revealed in the infringement. While bcrypt is considered stronger than older methods like SHA1 and MD5, the hashes can still end up being brute-forced to get access.

Drivesure is a program that helps car dealerships build client devotion by leveraging data about their trips and choices, Risk Based Reliability said. Among other things, the company provides customer-facing services such as roadside assistance programs and training for sales employees.

The business was hit by a source chain episode in which a merchandise from software program vendor Accellion was destroyed. Accellion told the Detroit Times it had been working to exchange the old rendition of their file copy software with a newer 1. Unfortunately, it seems the auditor for the state of Buenos aires was using the older version on the computer software at the time of the breach.

This company was hacked by the same threat professional that found myself in SolarWinds and the U. S. State Team in a the latest spate of strategies. Other companies that offer software or perhaps provide expertise to various other businesses are also getting struck by assailants.