The discovery began when Sam Curry, after buying a 2023 Impreza for his mother, made the decision to read about its characteristics connected to the Internet a Thanksgiving visit.
Curry and fellow researcher Shubham Shah discovered that they can simply hijack control of various vehicle functions, adding unlocking doors, honking the horn, and starting the ignition. However, what Curry found to be most disturbing was the ability to access detailed location history. “You can retrieve at least a year of the car’s location history, where it’s pinpointed, multiple times a day,” Curry told Wired. He added: “Whether it’s someone cheating on their wife, having an abortion, or being part of a political group, there are a million scenarios where you can use it as a weapon against someone. “
Investigators began by identifying a weakness in the password reset capability on the Subarucs. com site, an administrative portal for Subaru employees. By simply adjusting an employee’s email address, you can initiate a password reset process, exposing a critical flaw in the system design.
Techspot: technology enthusiasts, advanced users, players
Techspot is a registered trademark. Regarding the declaration of ethics for the use of confidentiality policy amendment to consent for advertising to announce
© 1998 – 2025 Techspot, Inc. All rights reserved.