Head Topics

Hackers Could Remotely Unlock, Start Honda, Nissan, Infiniti, And Acura Cars Through SiriusXM | Carscoops

Ireland News News

Hackers Could Remotely Unlock, Start Honda, Nissan, Infiniti, And Acura Cars Through SiriusXM | Carscoops
Ireland Latest News,Ireland Headlines
  • 📰 Carscoop
  • ⏱ Reading Time:
  • 45 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 21%
  • Publisher: 63%

Hackers Could Remotely Unlock, Start Honda, Nissan, Infiniti, And Acura Cars Through SiriusXM | Carscoops carscoops

It was discovered that SiriusXM was using a vehicle’s VIN to authorize commands and fetch user profiles. Hackers uncovered owners’ names, phone numbers, addresses, and car details and were also able to run vehicle commands simply by knowing the VIN of a car.BMW Owners Have Hacked Their Cars Before And This Heated Seat Subscription Might Cause Them To Again

Soon after discovering the vulnerability, Curry and his team reported the issue to SiriusXM who quickly patched it. “We take the security of our customers’ accounts seriously and participate in a bug bounty program to help identify and correct potential security flaws impacting our platforms,” a Sirius XM Connected Vehicle Services spokesperson told. “As part of this work, a security researcher submitted a report to Sirius XM’s Connected Vehicle Services on an authorization flaw impacting a specific telematics program. The issue was resolved within 24 hours after the report was submitted.

It returned “200 OK” and returned a bearer token! This was exciting, we were generating some token and it was indexing the arbitrary VIN as the identifier. To make sure this wasn’t related to our session JWT, we completely dropped the Authorization parameter and it still worked!

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

Carscoop /  🏆 306. in US

Ireland Latest News, Ireland Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

SiriusXM Mulls Job, Cost Cuts in 2023 Amid Declining Ad Budgets, Auto Manufacturer DelaysSiriusXM Mulls Job, Cost Cuts in 2023 Amid Declining Ad Budgets, Auto Manufacturer DelaysThe SiriusXM CEO says the company aims to control costs while prioritizing a rebuild of its technology infrastructure in 2023.
Read more »

Hackers just stole LastPass data, but your passwords are safe | Digital TrendsHackers just stole LastPass data, but your passwords are safe | Digital TrendsLastPass has suffered its second security breach in just a few months as hackers made off with data, but luckily user passwords are safe and encrypted.
Read more »

Twitter Competitor Shuts Down App When It Turns Out Hackers Can Read Users' Private MessagesTwitter Competitor Shuts Down App When It Turns Out Hackers Can Read Users' Private MessagesTwitter alternative Hive Social has had to pull all of its servers offline in light of some serious security vulnerabilities.
Read more »

Hackers found a way to unlock, start cars through Sirius XM and Hyundai vulnerabilityHackers found a way to unlock, start cars through Sirius XM and Hyundai vulnerabilityA white hat hacker named Sam Curry recently uncovered some security vulnerabilities in new cars.
Read more »

Vatican Buzzing With Conspiracy Theories as Hackers StrikeVatican Buzzing With Conspiracy Theories as Hackers StrikeThe holy hack came just 24 hours after Pope Francis angered the Kremlin by singling out Chechens and Buryati troops within the military contingent invading Ukraine, leading to accusations of “race baiting” against the pontiff.
Read more »

San Diego Unified Targeted By Cyber HackersSan Diego Unified Targeted By Cyber HackersThe San Diego Unified School District was the latest victim of a cybersecurity breach, according to a letter sent to parents on Thursday.
Read more »



Render Time: 2025-02-24 22:16:56