Cybersecurity researchers discovered a flaw in Kia's website that enabled remote control over millions of vehicles, allowing access to key functions using just a license plate.
The researchers found that vulnerabilities in Kia vehicles allowed them to control functions like unlocking doors and tracking location with only a license plate. This included activating cameras and starting engines.
Curry demonstrated the exploit in a YouTube video, using a custom app called KIAtool, which required only the vehicle's license plate and state to access its functions.
The web portal flaw exposed a wealth of personal data about Kia customers, including names and past driving routes, raising significant concerns about user privacy and vehicle security.
[
Collection
]
[
|
...
]