Volkswagen car-location data-exposure incident: Difference between revisions
Bythmusters (talk | contribs) Added cargo template |
|||
| Line 18: | Line 18: | ||
==The incident== | ==The incident== | ||
[[File:Volkswagen.png|alt=Pie | [[File:Volkswagen geo-location pie chart.png|alt=Pie chart showing the total cars affected including the severity of each(whether its location was exposed down to a radius of 10cm or 10km) and breakdown by brand|thumb|Pie chart showing the total cars affected and breakdown by brand]] | ||
The core issue stemmed from a misconfiguration in Volkswagen's AWS storage implementation, which left customer data publicly accessible without proper authentication or access restrictions<ref name=":0" />. This exposed sensitive information about vehicle locations, EV-battery statistics and sensitive customer information. The incident not only breached customer trust, but Volkswagen's own [[Terms of Service]]. | The core issue stemmed from a misconfiguration in Volkswagen's AWS storage implementation, which left customer data publicly accessible without proper authentication or access restrictions<ref name=":0" />. This exposed sensitive information about vehicle locations, EV-battery statistics and sensitive customer information. The incident not only breached customer trust, but Volkswagen's own [[Terms of Service]]. | ||
==Industry context== | ==Industry context== | ||