You might have used drivesure as a tool for training your staff to attract and keep customers in the event that you own a car dealership or work in the automotive industry. Many customers have provided their full names, addresses number, phone numbers, emails as well as VINs of their vehicles and service records to this service and it’s been reported that some of these accounts were taken. In the last month, hackers published that information on the Raidforums hacking forum and offered the information for download for free.
The dump of data was published by a threat actor known as «pompompurin,» according to Bleeping Computer news service. The motive of the attacker is not known however, he appeared not to be in search of money since the data dump was uploaded slowly over time and didn’t demand any money.
Moreover, the hacker also published the images of passports and identity documents belonging to journalists and volleyball players from all over the world in a folder marked «backup» and in a separate folder called «AccreditationPhotos.» These photos could be used to phish and spear phishing attacks.
Researchers searching the Internet for poorly protected databases found a massive database containing details on 3.2 http://vpnversed.com/ million DriveSure clients. The breach encapsulates 91 MySQL databases that include detailed dealership and inventory information as well as revenue data, reports and claims and also PII and 93,063 encrypted passwords.
The company claims it’s working with Microsoft to have the flaw fixed. It’s unclear whether the company will be able to get a patch for the many smaller systems that use the older version of Accellion’s FTA.