3 matches found
The Bug Report – July 2022 Edition
The Bug Report – July 2022 Edition By Trellix · August 3, 2022 This story was also written by Kasimir Schulz and Jesse Chick Your Cybersecurity Comic Relief Why am I here? Welcome to the Bug Report, Heat Wave Edition! In the face of chronic irritability and soggy-pants syndrome, we are back at it...
CVE-2022-2107
CVE-2022-2107: MiCODUS MV720 GPS tracker API server uses a hard-coded master password, enabling unauthenticated login and direct SMS-command control of trackers (impersonating owners, accessing/modifying data, and potentially steering vehicles). Device IDs are sequential, aiding targeting. Public...
Unpatched GPS Tracker Bugs Could Let Attackers Disrupt Vehicles Remotely — The Hacker News
The U.S. Cybersecurity and Infrastructure Security Agency CISA is warning of a handful of unpatched security vulnerabilities in MiCODUS MV720 Global Positioning System GPS trackers outfitted in over 1.5 million vehicles that could lead to remote disruption of critical operations. "Successful...