165 matches found
Car Tyre Sensors Can Be Used to Track Drivers Without Their Knowledge
New research from IMDEA Networks reveals how unencrypted signals from tyre pressure sensors in brands like Toyota and Mercedes can be used for covert vehicle tracking. Learn how these low-cost systems can map out your daily routines and why current regulations fail to protect driver privacy...
CVE-2023-29389
Toyota RAV4 2021 vehicles automatically trust messages from other ECUs on a CAN bus, which allows physically proximate attackers to drive a vehicle by accessing the control CAN bus after pulling the bumper away and reaching the headlight connector, and then sending forged "Key is validated"...
Meet Rey, the Admin of ‘Scattered Lapsus$ Hunters’
A prolific cybercriminal group that calls itself "Scattered LAPSUS$ Hunters " has dominated headlines this year by regularly stealing data from and publicly mass extorting dozens of major corporations. But the tables seem to have turned somewhat for "Rey," the moniker chosen by the technical...
EUVD-2025-147679
Malicious code in toyota-cir13 npm...
EUVD-2025-147672
Malicious code in toyota-cir5 npm...
EUVD-2025-147675
Malicious code in toyota-cir2 npm...
EUVD-2025-147681
Malicious code in toyota-cir11 npm...
EUVD-2025-147668
Malicious code in toyota-cir9 npm...
Malicious code in toyota-cir12 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3cb50aaf2920ed65a812c92dcc054b5fc5ee8ac69de31be2b312440f17faa69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in toyota-cir9 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2f803cce34c9591adac54f42130deb21ccef9fe855803712063275cc18b5551 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in toyota-cir11 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b70cc6153ed690452e62ce90b2eb0c9b1c0539a5423a894b4b22ece7a0ad2116 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147677
Malicious code in toyota-cir15 npm...
EUVD-2025-147671
Malicious code in toyota-cir6 npm...
Malicious code in toyota-cir16 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90f533b447942f09876718e53b392b4bcdae109595f4cd3c892ae40efb2f87ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in toyota-cir4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ef7b51f69e70003b26b96358f8e348011f8562b956167e7f1bb6718f3374b84d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147673
Malicious code in toyota-cir4 npm...
Malicious code in toyota-cir6 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a62ae286d7808fd8d4ad807c7cf84f461602df9b462dcde599bf8ac912ea113e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in toyota-cir8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcc9b2956a248b9ed5da845bb6a9c1d46dc16b5491d2e0ea8de112e1ae4cd2f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147676
Malicious code in toyota-cir16 npm...
Malicious code in toyota-cir10 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d572b2215b2a318951c7ae73ba218e4bd1cfc406e7be9e1bce1e6ab268f048d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...