welcome
About us
Newsletter
News Widget
Media Inquiries

Summary

Subaru Vulnerability Exploited by Curry

This is a LinkedIn news story, published by Wired, that relates primarily to Sam Curry news.

LinkedIn news

For more LinkedIn news, you can click here:

more LinkedIn news

Sam Curry news

For more Sam Curry news, you can click here:

more Sam Curry news

News about Us crime, violence, terrorism & cybercrime

For more Us crime, violence, terrorism & cybercrime news, you can click here:

more Us crime, violence, terrorism & cybercrime news

Wired news

For more news from Wired, you can click here:

more news from Wired

About the Otherweb

Otherweb, Inc is a public benefit corporation, dedicated to improving the quality of news people consume. We are non-partisan, junk-free, and ad-free. We use artificial intelligence (AI) to remove junk from your news feed, and allow you to select the best politics news, business news, entertainment news, and much more. If you like this article about Us crime, violence, terrorism & cybercrime, you might also like this article about

security researcher Sam Curry

. We are dedicated to bringing you the highest-quality news, junk-free and ad-free, about your favorite topics. Please come every day to read the latest Subaru web vulnerabilities news, Subaru Impreza news, news about Us crime, violence, terrorism & cybercrime, and other high-quality news about any topic that interests you. We are working hard to create the best news aggregator on the web, and to put you in control of your news feed - whether you choose to read the latest news through our website, our news app, or our daily newsletter - all free!

car hacking
Wired

Wired

US Politics

US Politics

Subaru Security Flaws Exposed Its System for Tracking Millions of Cars

Wired
Summary
Nutrition label

76% Informative

Security researcher Sam Curry bought his mother a 2023 Subaru Impreza on condition she would let him hack it.

Curry and a researcher working with him online, Shubham Shah , discovered vulnerabilities in a Subaru web portal that let them hijack the ability to unlock the car, honk its horn, and start its ignition.

They also found they could also track the car's location, not merely where it was at the moment but where it had been for the entire year that his mother had owned it.

Researchers say they found the email address for a Subaru Starlink developer on LinkedIn , took over the employee's account, and immediately found that they could look up any Subaru owner by last name, zip code, email address, phone number, or license plate to access their Starlink configurations.

In seconds , they could reassign control of the Starlink features of that user's vehicle, including the ability to remotely unlock the car, honk its horn, start its ignition, or locate it.

VR Score

67

Informative language

62

Neutral language

38

Article tone

informal

Language

English

Language complexity

68

Offensive language

not offensive

Hate speech

not hateful

Attention-grabbing headline

not detected

Known propaganda techniques

not detected

Time-value

short-lived

External references

5

https://samcurry.net/web-hackers-vs-the-auto-industry#5-mass-assignment-on-reviver-allows-an-attacker-to-remotely-track-and-overwrite-the-virtual-license-plates-for-all-reviver-customers-track-and-administrate-reviver-fleets-and-access-modify-and-delete-all-user-informationhttps://arstechnica.com/cars/2024/12/whistleblower-finds-unencrypted-location-data-for-800000-vw-evs/https://foundation.mozilla.org/en/privacynotincluded/articles/its-official-cars-are-the-worst-product-category-we-have-ever-reviewed-for-privacy/https://www.carscoops.com/2024/10/californian-bill-will-protect-domestic-abuse-survivors-from-being-tracked-in-their-cars/https://samcurry.net/hacking-subaru

Source diversity

4

samcurry.netarstechnica.comfoundation.mozilla.orgwww.carscoops.com

Affiliate links

no affiliate links

Read full article