Drivesure Data Breach

You might have utilized drivesure as a tool to train your staff to increase sales and retain customers when you own a car dealership or work in the automotive industry. Many customers have provided their full names, address and phone numbers, as well as emails, vehicle VINs, and service records to this service and it’s been reported that some of these accounts were taken. Hackers published the information on the Raidforums forum late last month and offered it for free.

According to Bleeping Computer, the data dump was uploaded online by a threat agent known as “pompompurin”. The attacker’s motive is unknown but it appears that he wasn’t to be after money because he uploaded the data slowly over time and didn’t solicit any payment.

Moreover, the hacker also published the images of passports and identity documents belonging to journalists and volleyball players from all over the world in a folder marked “backup” and in a separate folder called “AccreditationPhotos.” These photos could be used to carry out spear phishing or phishing attacks.

Security researchers combing the Internet for unsecure databases have uncovered massive databases of information on 3.2 million DriveSure customers. The breach affects nineteen MySQL databases that contain detailed inventory and dealership information including revenue data, reports and claims, as well as PII and 93,063 bcrypt hashed passwords.

The company claims it’s working with Microsoft to correct the flaw. It’s not clear yet whether the company can issue an update to the numerous smaller systems that are using the older version Accellion’s FTA.

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes:

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>