Kia dealer portal flaw could let attackers hack millions of cars (www.bleepingcomputer.com)

submitted 1 month ago* (last edited 1 month ago) by BrikoX@lemmy.zip to c/databreaches@lemmy.zip

3 comments fedilink hide all child comments

A group of security researchers discovered critical flaws in Kia's dealer portal that could let hackers locate and steal millions of Kia cars made after 2013 using just the targeted vehicle's license plate.

top 3 comments

sorted by: hot top controversial new old

[-] Rentlar@lemmy.ca 12 points 1 month ago* (last edited 1 month ago)

Well, the concerning thing for me is less the hack as much as this connected system having these capabilities in the first place. A dealer should not be able to open and start my car without my keys (or a copy of them), a physical lock pick or a pry bar...

[-] SoupBrick@yiffit.net 2 points 1 month ago

I love the innovations that are being created in this late stage capitalism hellscape.

https://arstechnica.com/cars/2023/03/ford-files-patent-for-system-that-could-remotely-repossess-a-car/

[-] BrikoX@lemmy.zip 11 points 1 month ago

The flaws also exposed car owners' sensitive personal information, including their name, phone number, email address, and physical address, and could have enabled attackers to add themselves as a second user on the targeted vehicles without the owners' knowledge.

this post was submitted on 27 Sep 2024

32 points (100.0% liked)

Data Breaches

1032 readers

7 users here now

Information about data breaches, data leaks, ransomware attacks, and other related stories.

Companion communities

!cybersecurity@sh.itjust.works - centered on the cybersecurity and information security profession.

Icon attribution

founded 1 year ago

MODERATORS

BrikoX@lemmy.zip