US-based internet marketing service Purecars data was posted on the breach notification website Leakbase.
The user who posted the information claims to have access to information related to the company such as employee ID, deal ID, name, cell, status, emails, addresses, substatus, VOI stock, VOI model, etc. user joined the forum in March 2022 and have made 659 posts.
Screenshot of the hacker’s forum post (Source: FalconFeedsio)
Advertising solutions providing company Purecars’s website is accessible at the time of writing this article. Two screenshots were posted on the hacker’s forum post. The other image contained the names of files including AudiWestwood.txt, BudSmailMotorscars.txt, CogginNissanonAtlantic.txt, DavidMcDavidHondaofIrving.txt, and so on.
Screenshot of the hacker’s forum post (Source: FalconFeedsio)
The above screenshot of the hacker’s forum post had close to 200 files with a .txt extension allegedly belonging to the digital merchandising company Purecars. The cybercriminal/s did not try to sell the data in the post. Instead wrote, “Hello Community, Today I have uploaded the PURECARS Lead Database for you to download, thanks for reading and enjoy!”
The post claimed to have data related to sold models, sold VIN, sold stocks, and the year of selling among other details. Several well-known brands of cars were noted on the hacker’s forum post including Toyota, Volvo, Audi, BMW, etc.
Purecars recently acquired The AutoMiner, a customer data management platform. This was done to opt for several services including going cookieless. Such features would enable rendering a better service and securing storage and delivery of data. However, the hackers attacked its systems likely before the features could be fully implemented.