Researchers found a flaw in a Kia web portal that let them track millions of cars, unlock doors, and start engines at will—the latest in a plague of web bugs that’s affected a dozen carmakers.

Researchers found a flaw in a Kia web portal that let them track millions of cars, unlock doors, and start engines at will—the latest in a plague of web bugs that’s affected a dozen carmakers.

  • deafboy@lemmy.worldEnglish
    6·
    9 hours ago

    Mmmm, all those expired domains with known vulnerable api clients still calling them…

    Imagine a botnet. Now, imagine a botnet on wheels!

    • GHiLA@sh.itjust.worksEnglish
      3·
      7 hours ago

      If the data isn’t being paid for anymore, they can’t connect to anything at all. Is T-Mobile or Verizon or whoever expected to foot the bill ten years down for no reason? There may be some definitions of connecting I’m missing, but I reasoned a data connection over some sort of cellular network.

      But then, if it’s some hidden proprietary magic on some unused bands, who knows?

      • 𝕸𝖔𝖘𝖘@infosec.pubEnglish
        2·
        1 hour ago

        I think it does use cellular. But theoretically, it could use a mesh network of all applicable cars that hops back to some entrance nodes into the manufacturer’s network or cheap exit nodes to the broader internet.

        Edit, autocorrect