Unpatched GPS Tracker Security Bugs Threaten 1.5M Vehicles With Disruption

Click here to subscribe to Informationweek.com

Categories: Services | Professionals Business goods Financially Kantoor Marketing Retail Retail Industry Machines Age: 14 until 18 year 19 until 30 year 31 until 64 years

2 years ago

Html
Text

A GPS device from MiCODUS has six security bugs that could allow attackers to monitor 1.5 million vehicles that use the tracker, or even remotely disable vehicles.

Follow Dark Reading:

July 20, 2022

LATEST SECURITY NEWS & COMMENTARY

Unpatched GPS Tracker Security Bugs Threaten 1.5M Vehicles With Disruption A GPS device from MiCODUS has six security bugs that could allow attackers to monitor 1.5 million vehicles that use the tracker, or even remotely disable vehicles. Post-Breakup, Conti Ransomware Members Remain Dangerous The gang's members have moved into different criminal activities, and could regroup once law-enforcement attention has simmered down a bit, researchers say. Software Supply Chain Concerns Reach C-Suite Major supply chain attacks have had a significant impact on software security awareness and decision-making, with more investment planned for monitoring attack surfaces. Ongoing Magecart Campaign Targets Online Ordering at Local Restaurants More than 311 local eateries have been breached through online ordering platforms MenuDrive, Harbortouch, and InTouchPOS, impacting 50K records — and counting. Okta Exposes Passwords in Clear Text for Possible Theft Researchers say Okta could allow attackers to easily exfiltrate passwords, impersonate other users, and alter logs to cover their tracks. Protecting Against Kubernetes-Borne Ransomware The conventional wisdom that virtual container environments were somehow immune from malware and hackers has been upended. Will Your Cyber-Insurance Premiums Protect You in Times of War? Multiple cyber-insurance carriers have adopted act-of-war exclusions due to global political instability and are seeking to stretch the definition of war to deny coverage. MORE NEWS / MORE COMMENTARY


HOT TOPICS
How Attackers Could Dupe Developers into Downloading Malicious Code From GitHub Developers need to be cautious about whom they trust on GitHub because it's easy to establish fake credibility on the platform, security vendor warns. Sandworm APT Trolls Researchers on Its Trail as It Targets Ukraine Researchers who helped thwart the Russian nation-state group's recent attack on Ukraine's power supply will disclose at Black Hat USA what they found while reverse-engineering the powerful Industroyer2 malware used by the powerful hacking team. 3 Golden Rules of Modern Third-Party Risk Management It's time to expand the approach of TPRM solutions so risk management is more effective in the digital world. MORE

EDITORS' CHOICE

Trojanized Password Crackers Targeting Industrial Systems Tools purporting to help organizations recover lost passwords for PLCs are really droppers for malware targeting industrial control systems, vendor says. LATEST FROM THE EDGE
Tackling the Cybersecurity Workforce Challenge With Apprentices One of the announcements out of the National Cyber Workforce and Education Summit on July 19 was the 120-day Cybersecurity Apprenticeship Sprint. LATEST FROM DR TECHNOLOGY
Startup Aims to Secure AI, Machine Learning Development With security experts warning against attacks on machine learning models and data, startup HiddenLayer aims to protect the neural networks powering AI-augmented products.

WEBINARS

What Every Enterprise Should Know About Insider Data Leaks

Cyber attacks by external adversaries are damaging, but it's your trusted users - those who know your systems and data best - who can truly wreak havoc in your enterprise. In this webinar, experts discuss methods for detecting and preventing ...

Building and Maintaining an Effective Remote Access Strategy

The COVID-19 pandemic transformed enterprises into remote workplaces overnight, forcing IT organizations to revamp their computing and networking strategies on the fly. Some of the changes were intended to be temporary, and some rules were adopted without thinking through all ...

View More Dark Reading Webinars >>

WHITE PAPERS

Implementing Zero Trust In Your Enterprise: How to Get Started Incorporating a Prevention Mindset into Threat Detection and Response Five Best Practices for AWS Security Monitoring AppSec Considerations For Modern Application Development The Many Risks of Modern Application Development Endpoint Detection Net Suite Use Cases Ambush Attackers at the Endpoint with the Endpoint Detection Net (EDN) Suite

View More White Papers >>

FEATURED REPORTS

Incorporating a Prevention Mindset into Threat Detection and Response State of the Cloud: A Security Perspective

Cloud computing has evolved over the years from a nice-to-have item on the IT wish list to a core technology driving business initiatives. But despite widespread adoption, cloud-based IT systems continue to be saddled with issues related to data security, ...

How Enterprises Are Securing the Application Environment

Download this report from Dark Reading to learn more about the measures enterprises have adopted to ensure the security of their internally developed applications and third-party packaged applications.

View More Dark Reading Reports >>

PRODUCTS & RELEASES

Huntress Acquires Curricula for $22M to Disrupt Security Training Market, Elevate Cyber Readiness for SMB Employees GhangorCloud Announces CAPE, a Next Generation Unified Compliance and Data Privacy Enforcement Solution Enso Security Leads Industry Mission to Bring Control to Chaos With Community-Driven AppSec Map MORE PRODUCTS & RELEASES

CURRENT ISSUE

Implementing Zero Trust In Your Enterprise: How to Get Started
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.

Share on

Other newsletters from Informationweek.com

Beyond Washington, DC: The State of State-Based Data Privacy Laws Informationweek.com
4 hours ago
Faux ChatGPT, Claude API Packages Deliver JarkaStealer Informationweek.com
6 hours ago
Final Chance: Urgent Invite for December 3rd Informationweek.com
7 hours ago

More newsletters from Informationweek.com

Related newsletters

View other categories

Services | Professionals Business goods Financially Kantoor Marketing Retail Retail Industry Machines