Reading:
“Millions of car dealership information spread on the web” – DealerBuilt’s “shoddy” system has reportedly caused a massive data breach
Share:

Data Leak Lawyers - Begin Your Data Breach Claim Today!

Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.

Start Your Claim
Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

“Millions of car dealership information spread on the web” – DealerBuilt’s “shoddy” system has reportedly caused a massive data breach

While data breaches are at an all-time high in the U.K., the U.S. are facing the same security crisis with huge data breaches happening all the time as well. A recent report showed that customers’ personal details from hundreds of car dealerships were put at risk due to an inadequate database.

DealerBuilt is a specialised Dealer Management System (DMS) which allows dealers to manage every aspect of a dealership, and they boast a “secure integration”, which is somewhat ironic given the breach…

A “shoddy” system

Researchers recently found that 128 dealership systems were backing up their information and systems onto the DealerBuilt central systems. What is described as a ‘shoddy security system’, the DealerBuilt’s centralised system were reportedly backing up data without encryption or security. Not only does unencrypted data offer a huge business risk, but it allows hackers to see what is being backed up. Not encrypting data is likened to driving a brand new Ferrari without insurance. You may drive it as safely as you wish, but it doesn’t protect you from the actions of other drivers. So, driving any vehicle (without insurance) puts you at the same financial risk as not encrypting your data. It’s not just the financial penalty that you have to think about, but the wasted time rectifying the solution.

Customer and employee personal information

The database was found on Shodan, a search engine for open and unsecured databases connected to the internet. The database importantly includes payroll data (which may include sensitive information like bank details), customer names, and addresses. It’s not just customer details that they have failed to protect securely – the database also stored information like the social security numbers of customers and the employees who are employed by the dealerships. This arguably puts these individuals at a higher risk of identity theft. Cyber-hackers can use sensitive information to commit financial fraud or filing for false tax returns.

Millions affected

As the researchers detail 128 dealership systems, it’s likely that the individuals affected would be in the millions (estimated five million). However, there are no exact numbers as of yet.

Importance of a secure database

This data breach highlights the importance of a secure database when storing personal details and sensitive information. It’s arguable that dealerships should have done more to secure their databases rather than afford all the responsibility to a third party contractor, like DealerBuilt. It seems as if many of the dealerships were not even aware of DealerBuilt’s security procedures, as their website reportedly fails to detail how the company handles data security.

The content of this post/page was considered accurate at the time of the original posting and/or at the time of any posted revision. The content of this page may, therefore, be out of date. The information contained within this page does not constitute legal advice. Any reliance you place on the information contained within this page is done so at your own risk.

We offer genuine No Win, No Fee agreements for our clients. Why we do this is simple:

Leading Data Breach Lawyers
Our experience speaks for itself.
We will fight for your right to compensation.
Access to Justice
As a victim of a data breach or hack, you deserve your chance to get access to justice.
Risks Assessment
We carefully risk assess your case and take it on if we think we have a good chance of winning the claim.

Request A Callback From Our Team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy
SRA
Contact
www.dataleaklawyers.co.uk is © of Your Lawyers Limited - we are 'Authorised and Regulated by the Solicitors Regulation Authority (SRA number 508768)'
arrow-up icon