SiriusXM Vulnerability Lets Hackers Remotely Unlock and Start Connected Cars

Cybersecurity researchers have discovered a security vulnerability that exposes cars from Honda, Nissan, Infiniti, and Acura to remote attacks through a connected vehicle service provided by SiriusXM. The issue could be exploited to unlock, start, locate, and honk any car in an unauthorized manne...

Automaker Cybersecurity Lagging Behind Tech Adoption, Experts Warn

A pair of recent vulnerabilities found in the automaker ecosystem might not seem like a real danger taken separately. But experts warn a lack of attention on cybersecurity could plague “smart” car and electric vehicle systems — and users — in years to come, as the use of automotive technology...

Honda's Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles

A duo of researchers has released a proof-of-concept PoC demonstrating the ability for a malicious actor to remote lock, unlock, and even start Honda and Acura vehicles by means of what's called a replay attack. The attack is made possible, thanks to a vulnerability in its remote keyless system...

vehiclehistory.com XSS vulnerability

Vulnerable URL: https://www.vehiclehistory.com/reports/free-reviews-complaints-report/2/exterior-dimensions.php?make=acura=...

vehiclehistory.com XSS vulnerability

Vulnerable URL: https://www.vehiclehistory.com/reports/free-reviews-complaints-report/1/exterior-dimensions.php?make=acura=...

vehiclehistory.com XSS vulnerability

Vulnerable URL:...

Acura Edit CMS 2.1 SQL Injection

Acura Edit CMS 2.1 SQL Injection Vulnerability Author : SOLVER Bug Researchers Date : 03.08.2011 Name : Acura Edit CMS 2.1 Vendor: http://www.acura.com.au/ Bug Type : SQL Injection Example Exploit http://www.matangiisland.com/?article='%20OR%20'a'='a...

Honda hacked - 283,000 car owners personal data Leaked !

While Tokyo-based Sony Corp. battles massive data security breaches, Japanese carmaker Honda is confronting its own online challenge — the theft of personal information from 283,000 Honda and Acura customers in Canada. Jerry Chenkin, executive vice-president and chief compliance officer at Honda...

Millions of Honda/Acura owners affected by hacked Honda database !

The Japanese motor company, Honda, today issued an alert to U.S. customers concerning a security breach resulting from a hacked database. The database that was managed by a third-party marketing group contained confidential information, including names of car owners, personal e-mail addresses, an...

Millions of customer's email addresses stolen from Honda !

American Honda says it has contacted millions of its customers after hackers stole a database containing names, email addresses, and VINs the Vehicle Identification Number, or unique 17 character ID for your motor vehicle. The obvious danger is that cybercriminals might use the list to send out...

Unfixed XSS vulnerability at www.carsdirect.com

Security researcher Rugburn, has submitted on 20/02/2009 a cross-site-scripting XSS vulnerability affecting www.carsdirect.com, which at the time of submission ranked 18485 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/12/2011. It is...