Head Topics

Hackers Could Remotely Unlock, Start Honda, Nissan, Infiniti, And Acura Cars Through SiriusXM | Carscoops

Indonesia Berita Berita

Hackers Could Remotely Unlock, Start Honda, Nissan, Infiniti, And Acura Cars Through SiriusXM | Carscoops
Indonesia Berita Terbaru,Indonesia Berita utama
  • 📰 Carscoop
  • ⏱ Reading Time:
  • 45 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 21%
  • Publisher: 63%

Hackers Could Remotely Unlock, Start Honda, Nissan, Infiniti, And Acura Cars Through SiriusXM | Carscoops carscoops

It was discovered that SiriusXM was using a vehicle’s VIN to authorize commands and fetch user profiles. Hackers uncovered owners’ names, phone numbers, addresses, and car details and were also able to run vehicle commands simply by knowing the VIN of a car.BMW Owners Have Hacked Their Cars Before And This Heated Seat Subscription Might Cause Them To Again

Soon after discovering the vulnerability, Curry and his team reported the issue to SiriusXM who quickly patched it. “We take the security of our customers’ accounts seriously and participate in a bug bounty program to help identify and correct potential security flaws impacting our platforms,” a Sirius XM Connected Vehicle Services spokesperson told. “As part of this work, a security researcher submitted a report to Sirius XM’s Connected Vehicle Services on an authorization flaw impacting a specific telematics program. The issue was resolved within 24 hours after the report was submitted.

It returned “200 OK” and returned a bearer token! This was exciting, we were generating some token and it was indexing the arbitrary VIN as the identifier. To make sure this wasn’t related to our session JWT, we completely dropped the Authorization parameter and it still worked!

Berita ini telah kami rangkum agar Anda dapat membacanya dengan cepat. Jika Anda tertarik dengan beritanya, Anda dapat membaca teks lengkapnya di sini. Baca lebih lajut:

Carscoop /  🏆 306. in US

Indonesia Berita Terbaru, Indonesia Berita utama

Similar News:Anda juga dapat membaca berita serupa dengan ini yang kami kumpulkan dari sumber berita lain.

SiriusXM Mulls Job, Cost Cuts in 2023 Amid Declining Ad Budgets, Auto Manufacturer DelaysSiriusXM Mulls Job, Cost Cuts in 2023 Amid Declining Ad Budgets, Auto Manufacturer DelaysThe SiriusXM CEO says the company aims to control costs while prioritizing a rebuild of its technology infrastructure in 2023.
Baca lebih lajut »

Hackers just stole LastPass data, but your passwords are safe | Digital TrendsHackers just stole LastPass data, but your passwords are safe | Digital TrendsLastPass has suffered its second security breach in just a few months as hackers made off with data, but luckily user passwords are safe and encrypted.
Baca lebih lajut »

Twitter Competitor Shuts Down App When It Turns Out Hackers Can Read Users' Private MessagesTwitter Competitor Shuts Down App When It Turns Out Hackers Can Read Users' Private MessagesTwitter alternative Hive Social has had to pull all of its servers offline in light of some serious security vulnerabilities.
Baca lebih lajut »

Hackers found a way to unlock, start cars through Sirius XM and Hyundai vulnerabilityHackers found a way to unlock, start cars through Sirius XM and Hyundai vulnerabilityA white hat hacker named Sam Curry recently uncovered some security vulnerabilities in new cars.
Baca lebih lajut »

Vatican Buzzing With Conspiracy Theories as Hackers StrikeVatican Buzzing With Conspiracy Theories as Hackers StrikeThe holy hack came just 24 hours after Pope Francis angered the Kremlin by singling out Chechens and Buryati troops within the military contingent invading Ukraine, leading to accusations of “race baiting” against the pontiff.
Baca lebih lajut »

San Diego Unified Targeted By Cyber HackersSan Diego Unified Targeted By Cyber HackersThe San Diego Unified School District was the latest victim of a cybersecurity breach, according to a letter sent to parents on Thursday.
Baca lebih lajut »



Render Time: 2025-03-04 22:29:25