Smart cars are great. They allow you to remotely lock and unlock your car, start or stop the engine, provide the car’s gps location, flash the headlights and honk the horn from any location. It could be using the manufacturer’s provided mobile app or via their web app. However if those web apps and APIs had vulnerabilities, then it could also allow attackers to do those same actions to your car from anywhere in the world. Sam Curry wrote an article on the vulnerabilities he found and discovered that sometimes all it takes to get access is to know the vehicle’s VIN number or the victim’s email address. Check out the article and find out how secure is your car.
This segment was created for the It’s 5:05 podcast