It was revealed that a security vulnerability discovered in Subaru cars allowed millions of vehicles to be remotely monitored, unlocked and even started. This vulnerability, discovered by a cybersecurity expert named Sam Curry, revealed how vulnerable vehicles integrated with Subaru’s Starlink system can be.
Critical Vulnerability in Subaru: Millions of Users at Risk
Curry found an unsecured password reset code on a Subaru employee website. He gained access to an employee account with a simple email search and bypassed two-step verification. Once in the system, he was able to view the vehicles’ location history for the last year.
Even more surprising was that it could unlock and start the engine of vehicles with the Starlink system. For those who don’t know, this is Starlink, not Elon Musk’s company that provides space internet. Starlink, the subject of the news, is a security system that provides remote monitoring and control that Subaru integrates into vehicles.
A well-intentioned Curry reported his findings to Subaru, and the company fixed the vulnerability the next day. In his statement on the subject, he explained that there is no evidence that anyone else is using this vulnerability. Curry noted that such vulnerabilities are common in the security industry.
The World’s Most Valuable Automobile Brands Announced! Tofaş is also on the list
Ford Otosan and Tofaş also managed to be included in the list of the world’s most valuable automobile brands. Here are the details about the list!
He emphasized that employees in the automotive industry have wide access rights and that the systems work based on trust. Of course, this statement managed to unsettle many car owners.
Source link: https://www.tamindir.com/haber/subaru-otomobiller-guvenlik-acigi_92653/