A bug that allowed two researchers to gain access to the backend systems of a popular internet-connected vehicle management system could have given a malicious hacker everything they needed to track the vehicle’s location, steal user information, and even cut out the engine. More security news Researchers say a breathalyzer has flaws, casting doubt on countless convictions Kaspersky Lab to shift US customer data from Russia to Switzerland US cell carriers are selling access to your real-time phone location data Rail Europe had a three-month long credit card breach In a disclosure this week, the researchers Vangelis Stykas and George Lavdanis detailed a bug in a misconfigured server run by Calamp, a telematics company that provides vehicle security and tracking, which gave them “direct access to most of its production databases.”

Read full news article on ZDNet