Privacy

1112 readers

942 users here now

Protect your privacy in the digital world

Welcome! This is a community for all those who are interested in protecting their privacy.

Rules

PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!

Be nice, civil and no bigotry/prejudice.
No tankies/alt-right fascists. The former can be tolerated but the latter are banned.
Stay on topic.
Don't promote proprietary software.
No crypto, blockchain, etc.
No Xitter links. (only allowed when can't fact check any other way, use xcancel)
If in doubt, read rule 1

Related communities:

founded 3 months ago

MODERATORS

fxomt@lemmy.dbzer0.com

otter@lemmy.ca

shaytan@lemmy.dbzer0.com

fxomt@piefed.social

Subaru security vulnerability allowed millions of cars to be tracked, unlocked, and started (9to5mac.com)

submitted 1 month ago by Blaze@lemmy.zip to c/privacy@lemmy.dbzer0.com

3 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] scytale@lemm.ee 1 points 1 month ago (1 children)

Here's the actual write-up. TLDR: The issue is not with the Starlink app itself, but the Starlink Admin system that was vulnerable due to poor coding practices. The pentester was able to take over a Subaru Starlink admin's account and apparently Starlink retains a TON of information about your vehicle and driving history that is easily viewable by any "admin". The tester was also able to add himself to the vehicle's authorized users and could trigger the remote features (i.e. lock/unlock, remote start) from the admin panel. Subaru was notified of this and they claim to have patched it. I'm not sure if opting out of the data collection and sharing would've helped keeping all that information from being retained there.

[–] sunzu2@thebrainbin.org 0 points 1 month ago

apparently Starlink retains a TON of information about your vehicle and driving history that is easily viewable by any "admin"

EST