DriveSure Data Infringement
DriveSure is mostly a training platform in order to car dealers to build customer loyalty. vpnversed.com/the-benefits-of-ai-based-data-software-and-how-its-different-from-traditional-one/ It has many customers that subscribe to it is training and course material. They provide their names, addresses, telephone numbers and e-mail to the site.
In Dec 2020, DriveSure suffered a data breach which resulted in 26GB of personal information being downloaded and shared on a cracking forum. This included three or more. 6 mil unique emails, names, phone numbers and physical addresses. Car information was also uncovered including makes, models, VIN numbers and odometer blood pressure measurements.
The hackers made the DriveSure info available for free on multiple hacking forums, so it was freely accessible to anyone. The attackers left a 22GB folder which in turn contained DriveSure’s MySQL databases, subjecting 91 hypersensitive databases.
PII was contained in the dump, and damage comments, extended car details and dealer and warranty info. These were pretty much all prime for the purpose of exploitation simply by other danger actors.
Above 93, 1000 bcrypt hashed passwords were also made public. Even though stronger than SHA1 and MD5, bcrypt passwords can easily still be brute-forced when downloaded from a server, Risk Based Reliability explained.
Using a poor password can allow a great attacker to steal your details from the storage space, so it’s important to improve them as soon as possible. In addition , a fresh good idea to wipe hard drive on your pc before disposing of it to avoid any info from currently being accidentally or maliciously uncovered. You can do this simply using a data destruction plan or setting up a fresh installing of the operating-system.
Print article | This entry was posted by Ferko on 08/03/2023 at 15:54, and is filed under Iné. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site. |