DriveSure

Have I Been PwnedConfirmed breachAdded May 10, 2021Occurred December 19, 20203,675,099 accountsdrivesure.comAll DriveSure breaches →

What was exposed

Email addressesNamesPasswordsPhone numbersPhysical addressesVehicle details

What to do if you were affected

Change your password for this account, and anywhere you reused it. Turn on two-factor authentication.
Expect more phishing and spam at this address. Treat messages that reference this company with extra caution.
Watch for text-message phishing and SIM-swap attempts on your phone number.
Be wary of targeted scams that use your personal details to sound convincing.

Details

In December 2020, the car dealership service provider DriveSure suffered a data breach . The incident resulted in 26GB of data being downloaded and later shared on a hacking forum. Impacted personal information included 3.6 million unique email addresses, names, phone numbers and physical addresses. Vehicle data was also exposed and included makes, models, VIN numbers and odometer readings. A small number of passwords stored as bcrypt hashes were also included in the data set.

Frequently asked questions

What is the DriveSure data breach?

When did the data breach happen?

This data breach occurred around December 2020.

How many accounts were affected?

Around 3,675,099 accounts were affected.

What information was exposed?

Exposed data included Email addresses, Names, Passwords, Phone numbers, Physical addresses and Vehicle details.

What should I do if I was affected?

Change your password for this account, and anywhere you reused it. Turn on two-factor authentication. Expect more phishing and spam at this address. Treat messages that reference this company with extra caution. Watch for text-message phishing and SIM-swap attempts on your phone number. Be wary of targeted scams that use your personal details to sound convincing.

View on source ↗

Related breaches