DriveSure, a subsidiary of Krex Inc has stuck in a data controversy where hackers have leaked details related to millions of US Drivers stolen from the database.
As per the details to Cybersecurity Insiders, the details were siphoned from a database on December 7th,2020 and was leaked on a hacking forum this week as the car dealership service provider might have not paid heed to the demands of the hackers.
Leaked details include Names, home and email addresses, phone numbers and the text messages exchanged between the car dealership provider and the car owner.
An analysis by the Risk Based Security data related to millions of customers might have accessed by hackers from a MySQL Databases exposing around 91 sensitive database, accounting to 22GB.
All the leaked information can act as a treasure trove to hackers, as they can exploit the victims through insurance scams or can tamper with warranty information.
Such credentials can also break into the consumer’s bank accounts, email accounts, or corporate networks.
Therefore, for companies that see data as their lifeline, they need to take adequate measures to secure the generated information of their esteemed customers. And for companies operating in European Union, the GDPR rules that kicked in May 2018 say that companies failing to protect the data of their users will be eligible for heavy penalties.