DriveSure, a business that helps car dealerships sell off and continue to keep customers, possessed 3. a couple of million consumer records released this month. Cyber criminals illegally received the data and posted that to multiple hacking community forums. The data was offered free of charge and included names, handles, phone numbers and emails and vehicle VIN numbers, documents and damage remarks. The data also included information via large corporate and business accounts and military the address.
The assailants released a 22GB folder that comprised of the DriveSure MySQL databases, which open 91 sensitive databases. The database eliminate was combined with PII, damage cases, expanded car facts and seller and warrantee info and also 93, 500 bcrypt hashed passwords, Risk Primarily based Reliability explained in a post on January 4. While security analysts consider bcrypt http://vpnversed.com/board-portal-increases-performance/ safer than SHA1 or MD5, it can still be brute-forced with sufficient computing power.
The attackers printed the databases upon Raidforums past due last month within the username “pompompurin. ” They wrote an extensive post to explain as to why they were leaving a comment the data, a behavior that is uncommon with respect to hackers. Commonly, they simply share useful segments or trimmed straight down versions of user directories.
POSTED BY
John Avery
5th September 2023
