Researchers found a flaw in a Kia web portal that let them track millions of cars, unlock doors, and start engines at will—the latest in a plague of web bugs that’s affected a dozen carmakers.

Researchers found a flaw in a Kia web portal that let them track millions of cars, unlock doors, and start engines at will—the latest in a plague of web bugs that’s affected a dozen carmakers.

    • Fox@pawb.socialEnglish
      7·
      4 hours ago

      Better yet, don’t connect cars to the internet. Why does everyone care so much about a shitty tablet in the middle of the dash? I am so much happier to not have it.

      • 𝕸𝖔𝖘𝖘English
        3·
        3 hours ago

        The cellular variant they’re talking about and the mesh variant don’t provide you internet access, they provides them access to your car and driving data, and you can’t control that. It doesn’t really give you any benefits.

        Edit: and, also, cars shouldn’t be internet connected. Nothing will change my mind on that.

    • a1studmuffin@aussie.zoneEnglish
      1·
      4 hours ago

      If the cost of implementing proper security is greater than the cost of the fallout from a serious vulnerability, I think we know how most companies will behave. Just take a look at Crowdstrike’s share price, it’s recovering nicely.

    • GHiLA@sh.itjust.worksEnglish
      3·
      15 hours ago

      Oddly enough, the cars will be more secure used since all of those online features will be defunct and abandoned for newer, more “advanced” shitware in ten years.

      Continuing the tradition that buying used is always a good idea. Thank you, auto industry.

      • deafboy@lemmy.worldEnglish
        6·
        14 hours ago

        Mmmm, all those expired domains with known vulnerable api clients still calling them…

        Imagine a botnet. Now, imagine a botnet on wheels!

        • GHiLA@sh.itjust.worksEnglish
          3·
          12 hours ago

          If the data isn’t being paid for anymore, they can’t connect to anything at all. Is T-Mobile or Verizon or whoever expected to foot the bill ten years down for no reason? There may be some definitions of connecting I’m missing, but I reasoned a data connection over some sort of cellular network.

          But then, if it’s some hidden proprietary magic on some unused bands, who knows?

          • 𝕸𝖔𝖘𝖘English
            2·
            6 hours ago

            I think it does use cellular. But theoretically, it could use a mesh network of all applicable cars that hops back to some entrance nodes into the manufacturer’s network or cheap exit nodes to the broader internet.

            Edit, autocorrect