DriveSure is known as a training program in order to car dealerships to build consumer loyalty. It has lots of customers that subscribe to the training and course material. They feature their titles, addresses, telephone numbers and e-mail to the web page.
In January 2020, DriveSure suffered a data breach which lead to 26GB of personal information being downloaded and distributed on a cracking forum. This included 3 or more. 6 million unique emails, names, cell phone numbers and physical addresses. Car or truck information was also subjected including makes, models, VIN numbers and odometer readings.
The cyber criminals made the DriveSure data available for free on multiple hacking community forums, so it was freely accessible to any person. The attackers broke up with a 22GB folder which in turn contained DriveSure’s MySQL databases, subjecting 91 delicate databases.
PII was contained in the dump, along with damage statements, extended car details and dealer and warranty information. These were almost all prime pertaining to exploitation by simply other risk actors.
Over 93, 000 bcrypt hashed passwords were made public. Though stronger than SHA1 and MD5, bcrypt passwords can easily still be brute-forced when downloaded from a server, Risk Based Security explained.
Working with a poor username and password can allow a great attacker of stealing important computer data from the server, so is considered important to improve them as quickly as possible. In addition , the new good idea to wipe the hard drive on your hard drive before disposing of it to prevent any data from simply being accidentally or perhaps maliciously exposed. You can do this through a data damage vpnversed.com/data-rooms-comparison-for-the-best-choice/ application or creating a fresh installing of the os.