Avtoto

In August 2022 the Russian automotive spare parts retailer Avtoto suffered a significant data breach. Ukrainian hackers allegedly gained unauthorized access to the company database and publicly released the sensitive information of approximately 510000 customers. The leaked data included personal identifiers such as full names and contact details alongside security credentials. Technical analysis revealed that user passwords were stored using the outdated and vulnerable MD5 hashing algorithm which poses a high risk of credential cracking and subsequent account takeovers across other platforms.