Car stores need to be mindful of the risks of cyber-attacks on the data. Drivesure, a service carrier that helps stores build buyer faithfulness by leveraging data regarding customer visitors and preferences, is not immune to threats. In fact , the company has suffered a tremendous data infringement that may have affected 3. a couple of million drivers’ personal information.
Online hackers dumped a 22GB file of DriveSure databases on a hacking online community last virtual collaboration software month, matching to doctors at Risk Based upon Security. The information dump included 91 MySQL databases with sensitive consumer data including names, tackles, phone numbers, email, vehicle VIN numbers, service records and harm claims. Also exposed had been more than 93, 063 bcrypt hashed security passwords. Though bcrypt is considered a powerful encryption technique, passwords saved this way are susceptible to brute power attacks for longer periods of time.
The hackers allegedly stole the results to sell that on forums or perhaps use it to create fake accounts on popular websites. Additionally, they could have tried it to access express agencies and small businesses involving Accellion’s software to transfer large data. The company says it is checking out the episode.