Curry, who works for Yuga Labs, a New York-based software program improvement firm, is understood in cybersecurity circles for his curiosity in automotive telematics.
In September 2022, a hacker contacted Curry to point out him how he hacked into Uber’s backend methods and compromised the ride-sharing service’s Amazon and Google-hosted cloud environments the place the corporate shops its supply code and buyer information. .
The automakers and SiriusXM stated no incidents resulted from the potential safety breach.
“Honda is conscious of a reported vulnerability involving SiriusXM Linked Automobile Companies offered to a number of automotive manufacturers, which SiriusXM says was resolved promptly upon changing into conscious of it,” stated Honda spokeswoman Jessica Fini. in a press launch. “Honda has seen no indication of malicious use of this now-resolved vulnerability to entry linked automobile providers in Honda or Acura automobiles.”
In a press release, SiriusXM Linked Automobile Companies stated “the difficulty was resolved inside 24 hours of report submission. At no time was any subscriber or different information compromised, and no unauthorized accounts modified utilizing this methodology”.
Hyundai spokesman Ira Gabriel stated Automotive Information that the automaker labored with third-party consultants to research the vulnerability as quickly as Curry and his workforce introduced the safety points to their consideration.
“You will need to word that apart from automobiles and Hyundai accounts belonging to the researchers themselves, our investigation indicated that no automobiles or buyer accounts had been accessed by others because of the points raised by the researchers. researchers,” stated Gabriel.
To hack a Hyundai, Gabriel stated, you want the e-mail tackle related to the account, together with the VIN and the script, or code, utilized by the hackers.
Nonetheless, Hyundai carried out countermeasures inside days of the notification to additional strengthen the security and safety of its methods, he stated.
curry stated Automotive Information that he thought automakers may make their smartphone apps safer by way of standardization, however they every take distinct approaches to growing their apps.
“It is a actually sophisticated drawback, however I might prefer to assume that our analysis helped repair a few of them,” Curry stated. “Growing business requirements and standardizing protocols would assist.”
Supply : https://information.google.com/__i/rss/rd/articles/CBMiSmh0dHBzOi8vd3d3LmF1dG9uZXdzLmNvbS9tb2JpbGl0eS1yZXBvcnQvc2lyaXVzeG0taGFjay11bmxvY2tzLXN0YXJ0cy1jYXJz0gEA?oc=5