- What do they have in common?

[rakhirhif8963]

Security Tales: Vulnerable Alarm
Vladimir Bezmaly | 21.03.2019
- Johann, we are seeing a sharp increase in the number of car thefts. And different brands are being stolen, usually quite prestigious ones. In different places.


— Availability of keyless car alarms from two global companies — Pan and Vip.

- And that's all?

— Yes. Moreover, this has been observed for the last three months. Since the police are unable to cope with thefts, and we believe that the problem is in the alarm system, we asked the emperor to involve your specialists to understand what is happening. Unfortunately, the appeal to the manufacturing companies has not yet been answered.

- Will you be able to provide us with several italy whatsapp data of such alarms and install them on several operational vehicles? Naturally, these vehicles will not leave our garage. Yes, it would be better to pay for all this from private accounts. You never know.

Three weeks have passed.

- Good afternoon, Commissioner! We conducted a study, I understand that it took a long time, but we couldn’t do it any faster. A vulnerability was found in these alarm systems, which allowed us to gain remote access to the car’s systems and the data they provide.

- And how does it work?

— Using the identified vulnerability, anyone can gain access to the remote account of an authorized vehicle owner. Flaws in the user interface on the support servers allow the user's email address to be replaced with any other address without authorization and a password reset operation can be performed, followed by sending the password to the attacker's address. This turned out to be so easy to do that our researchers called their report "Gone in 6 Seconds."