Techly NewsGet the app

Get the latest tech news

Hackers Crack Subaru's Connected Services to Access Data, Door Locks and More


The system has since been patched, but its admin panel left location data open to hackers

Penetration testing team Sam Curry and Shubham Shah discovered a vulnerability in Starlink’s administrator console, which allowed hackers to compromise the accounts of Subaru employees and gain admin access to the system. The description of the vulnerability involves reading a lot of JavaScript, but the attack vector itself came from Subaru employee accounts. Still, there’s no telling what other ways there may be to access the Starlink admin panel that the company doesn’t yet know about — or what other connected car suites have the same problems.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Hackers

Hackers

Photo of Subaru

Subaru

Photo of location data

location data

Related news:

News photo

Hackers get $886,250 for 49 zero-days at Pwn2Own Automotive 2025

News photo

Subaru’s poor security left troves of vehicle data easily accessible

News photo

CISA: Hackers still exploiting older Ivanti bugs to breach networks

« Show HN: Magenta.nvim – AI coding plugin for Neovim focused on tool use