Pen Test Partners have recently conducted research on the security of smart alarm systems. The research shows that over 3 million cars had security flaws that were linked to two companies, Pandora and Viper.

The vulnerabilities were quite serious, mainly due to the fact that they allowed to lock or unlock the doors, tune in to conversations inside the car, GPS tracking or even shut down the engine while driving. According to the research the cause for such exploit was poor authentication methods in the API, which caused password or e-mail change feature not to work properly.

Using the vulnerability the cybercriminals were able to change the e-mail address of the car owner, thanks to which they could reset the password and take over the account linked to the application.

The above situation proves that car manufactures should put special emphasis on establishing new safety standards.