You may have utilized drivesure as a tool to teach your employees how to sell and retain clients If you own a vehicle dealership or work in the auto industry. Millions of customers have provided their full names, addresses, phone numbers emails, addresses, vehicle VINs, and service records to the service and it’s believed that a few of these accounts were stolen. Last month, hackers posted that information on the Raidforums hacking forum, allowing the information for download for free.
According to Bleeping Computer, the data dump was posted online by a threat agent known as “pompompurin”. The motive of the attacker is unknown, but he seemed not to be seeking money as he uploaded the data in a slow manner and didn’t solicit any payment.
Moreover, the hacker also published the images of passports and identity documents belonging to journalists and volleyball players from all over the world in a folder marked “backup” and in a separate folder called “AccreditationPhotos.” These photos could be used to carry out spear attacks of phishing or phishing.
Security researchers combing the Internet for poorly secured databases have uncovered an enormous database of data on 3.2 million DriveSure customers. The breach involves 91 MySQL database that contains detailed inventory and dealership information, revenue data, reports and claims along with PII and 93 063 encrypted credentials in bcrypt.