1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Insecure APIs allow anyone to mess with Nissan LEAF electric car

Discussion in 'Help Net Security' started by RSS, Feb 25, 2016.

  1. RSS

    RSS New Member Member

    A vulnerability in the mobile app used to interact with Nissan LEAF, a popular electric car, can be exploited by remote, unauthenticated attackers to switch the car’s AC and heating system on and off, but also to extract details about the owner’s journeys, security researcher Troy Hunt has demonstrated. The weakness rests in the fact that the app interacts with the car via APIs that require no authentication to be accessed, and can therefore be … More →

    Continue reading...

Share This Page