Techly NewsGet the app

Get the latest tech news

Software Flaw Exposes Millions of Subarus, Rivers of Driver Data


chicksdaddy share a report from the Security Ledger: Vulnerabilities in Subaru's STARLINK telematics software enabled two, independent security researchers to gain unrestricted access to millions of Subaru vehicles deployed in the U.S., Canada and Japan. In a report published Thursday researchers Sa...

chicksdaddy share a report from the Security Ledger: Vulnerabilities in Subaru's STARLINK telematics software enabled two, independent security researchers to gain unrestricted access to millions of Subaru vehicles deployed in the U.S., Canada and Japan. The details of Curry and Shah's hack of the STARLINK telematics system bears a strong resemblance to hacks documented in his 2023 report Web Hackers versus the Auto Industry as well as a September, 2024 discovery of a remote access flaw in web-based applications used by KIA automotive dealers that also gave remote attackers the ability to steal owners' personal information and take control of their KIA vehicle. In each case, Curry and his fellow researchers uncovered publicly accessible connected vehicle infrastructure intended for use by [employees and dealers was found to be trivially vulnerable to compromise and lack even basic protections around account creation and authentication].

Get the Android app

Or read this on Slashdot

Read more on:

Photo of Millions

Millions

Photo of rivers

rivers

Photo of driver data

driver data

Related news:

News photo

Hackers found a way to remotely unlock, start, and track millions of Subarus

News photo

Subaru Security Flaws Exposed Its System for Tracking Millions of Cars

News photo

Supply chain attack hits Chrome extensions, could expose millions

« How Google Maps Plans to Handle the ‘Gulf of America’
The Impact of 25% Tariffs on Canadian GDP »