Volkswagen Group's troubled automotive software arm Cariad has been releasing terabytes of customer data on around 800,000 Audi, SEAT, Skoda and Volkswagen electric cars onto the internet for several months, Der Spiegel reports. I left it on [in German]He quoted a security researcher who learned about the data breach from an anonymous whistleblower.
Researchers speaking at the Chaos Computer Club in Hamburg, Germany this week said the published data also includes the exact location coordinates of more than half of the vehicles on the list, some 460,000. He said that Some of the location data is accurate to a few centimeters, they said, and the data shows most of the vehicles spotted in countries such as Germany, Norway, Sweden and the United Kingdom (in descending order), among others.
Cariad said it has fixed the bug that caused the exposure, but there is no evidence to suggest anyone other than security researchers accessed the exposed data. Cariad has struggled in recent years, plagued by delays in key software releases and a restructuring that has cut hundreds of jobs.