Cybersecurity Experts Warn of Privacy Risks in Modern Automobiles

A pair of hackers, Sam Curry and Shubham Shah, have exposed alarming security vulnerabilities within Subaru’s Starlink-connected infotainment system, enabling them to remotely take control of a Subaru Impreza. The duo gained unauthorized access to the vehicle through a compromised web portal linked to Subaru that allowed them to unlock the car, sound the horn, and start the ignition using any smartphone or computer.

Curry elaborated on their methods in a video and blog post, revealing that he simply reset the password of a Subaru employee’s account, thereby accessing a repository of location data that dated back over a year. The hackers noted that this data included precise records of the vehicle’s movements, down to specific parking spots. Subaru acknowledged the breach and stated that it has since patched the vulnerability, emphasizing its need to collect location data to assist in emergencies and vehicle recovery.

However, Curry and experts in the hacking community argue that automotive manufacturers have little justification for collecting extensive historical location data. They warn that the vulnerabilities they exploited are not exclusive to Subaru, claiming similar flaws exist in the systems of brands like Acura, Honda, Hyundai, Toyota, and more.

Meanwhile, cybersecurity concerns aren’t limited to Subaru. Security researchers from Kaspersky recently identified 13 critical vulnerabilities within Mercedes-Benz’s MBUX infotainment system, capable of allowing hackers to steal data and disable anti-theft protections if they can access the vehicle physically. Although Mercedes-Benz responded that it had patched these vulnerabilities since 2022, concerns remain about the security risks posed by modern connected vehicles.

The growing consensus among cybersecurity experts is clear: modern automobiles pose significant privacy and security threats. A recent Mozilla report emphasized that many cars are “a privacy nightmare,” collecting excessive data without informed consent from users and raising alarms about the potential for hackers to exploit these vehicles.

Comments on "Cybersecurity Experts Warn of Privacy Risks in Modern Automobiles" :

Leave a Reply

Your email address will not be published. Required fields are marked *

RECOMMENDED NEWS

Microsoft Edge is testing

Microsoft Edge is testing "Copilot Discover"; an MSN feed with AI-curated ads

Microsoft Edge began experimenting with a redesigned new tab page in April, to put Copilot front an...

2026-02-27
Microsoft's sneaky KB5001716 Windows 10 update pushes Windows 11

Microsoft's sneaky KB5001716 Windows 10 update pushes Windows 11

If you run Microsoft's Windows 10 operating system on your devices and wan to keep it that way, you...

2026-02-28
Steam Game Recording Beta announced: a built-in tool to record your gameplay videos

Steam Game Recording Beta announced: a built-in tool to record your gameplay videos

Steam has announced a new feature in its desktop client, called Game Recording. This built-in video...

2026-02-28
Ladybug Revives Classic Gaming with Blade Chimera Launch

Ladybug Revives Classic Gaming with Blade Chimera Launch

In a nostalgic nod to the golden era of classic gaming, developer Ladybug has released its latest t...

2026-03-01
Spotify's New 'Music Pro' Plan Brings HiFi Audio at an Additional Cost

Spotify's New 'Music Pro' Plan Brings HiFi Audio at an Additional Cost

Spotify is set to launch a new premium tier called "Music Pro" in 2025, nearly four years after ini...

2026-02-26
Oblivion Remastered update breaks DLSS and Frame Gen on PC

Oblivion Remastered update breaks DLSS and Frame Gen on PC

The recent update for The Elder Scrolls 4: Oblivion Remastered has raised concerns among players us...

2026-02-26