DriveSure

In December 2020 the American car dealership service provider DriveSure suffered a massive data breach after unauthorized access to their database server. The incident exposed sensitive information of approximately 3.6 million customers. The leaked data included personal identifiers and extensive vehicle details such as make model and VIN. Additionally the breach contained nearly 100000 bcrypt hashed passwords and details of dealership transactions. The data was subsequently shared on a popular hacking forum making it widely available to malicious actors.