Drivesure Data Breach

Drivesure Data Breach

If you’re a dealership owner or in the automotive industry, it’s likely you’ve used a program called drivesure to train your employees to market and keep customers. Many customers gave their full names, addresses and phone numbers, as well as emails along with vehicle VINs and service records to this service and it’s believed that some of these accounts were hacked. Hackers released the information on the Raidforums forum in the last week and made it available for free.

According to Bleeping Computer, the data dump was made public by a threat actor known as “pompompurin”. The motive of the attacker is not known however, he didn’t appear to be after money because the data was uploaded slowly over time and didn’t ask for any payments.

Moreover, the hacker also published the images of passports and identity documents belonging to journalists and volleyball players from all over the world in a folder marked “backup” and in a separate folder called “AccreditationPhotos.” These images could be used in phishing and spear phishing attempts.

Researchers searching the Internet for databases that were not adequately secured discovered a massive database containing details on 3.2 million DriveSure clients. The breach involves 91 MySQL database that includes detailed inventory and dealership information and revenue data, as well as reports and claims along with PII, and 93 063 encrypted bcrypt credentials.

The company says it’s working with Microsoft to get the bug fixed. It’s unclear whether the company can issue an update for the many smaller systems which use the earlier version of Accellion’s FTA.

Leave a Reply

Your email address will not be published. Required fields are marked *