800,000 Volkswagen cars' location data has been leaked, and it has been ongoing for a few months

JamesJan 02, 2025, 11:16 AM

【PCauto】Due to a lapse by the software company Cariad, Volkswagen Group's 800,000 electric vehicle location data in Europe was leaked and publicly accessible on the internet for several months. The affected vehicles include brands like Volkswagen, Audi, SEAT, and Skoda, with specific models such as ID.3 and ID.4 having their owners' location data exposed.

The scope of this incident is much broader than anticipated. It not only involves the location data of ordinary users' vehicles, but also includes owners' identity information and travel patterns. More critically, the vulnerability also affected the whereabouts of German government officials and public safety systems.

It was revealed that the real-time location data of dozens of official cars of German politicians, as well as some police vehicles, were also leaked in this incident. It includes 35 electric vehicles in the Hamburg police station fleet, other politicians, business leaders, Bundesnachrichtendienst employees, and drivers from the US Air Force's Ramstein Air Base.

Using the data, people were able to precisely track the daily movements of two German politicians. One of them is a member of the German Defense Committee, and his car's location data revealed frequent visits to his father's nursing home as well as the country's military barracks.

The other politician's itinerary showed her daily route from the municipal hall where she works to her therapist.

The Federal Commissioner for Data Protection and Freedom of Information (BfdI) in Germany expressed serious concern about the incident and rapidly launched a joint investigation. Chairman Klaus Müller emphasized at a press conference:

"This leak not only poses a significant threat to citizens' privacy, but also exposes serious vulnerabilities in the technical security of public institutions. We need to conduct a comprehensive review of this matter to ensure that similar incidents do not happen again."

In its latest statement, Volkswagen Group acknowledged the severity of the data breach involving vehicles of government officials and law enforcement agencies, and stated that it has collaborated with relevant government departments to strengthen the protection and remediation of the affected data. The company has committed to providing technical support to help public security agencies quickly close the vulnerabilities and has also pledged to offer compensation to the affected individuals and organizations.

Technical analysis of the incident shows that this vulnerability originated from a major mistake made by Cariad in the design of the API. Although the initial intention of the technology was to provide efficient interconnection capabilities, the lack of strict security testing and monitoring during the development and deployment process allowed sensitive information to leak through unprotected channels.

In this incident, the hacker group Chaos Computer Club played a key role by notifying Cariad about the vulnerability.

Industry experts point out that this event not only exposed technical issues within automobile manufacturing companies but also highlighted gaps in the industry's management and compliance practices. European data protection authorities are pushing for a special review of the connected car sector and are calling for the establishment of stricter regulatory standards to ensure the security of connected technologies.

# Industry trends

If any infringement occurs, please contact us for deletion

Follow Us

Facebook

Trending News
Tesla pushes 2025.2.6 update in North America, activating the hidden millimeter-wave radar in Model Y

Tesla pushes 2025.2.6 update in North America, activating the hidden millimeter-wave radar in Model Y

[PCauto] In February 2025, Tesla rolled out the 2025.2.6 software update for 2022 and subsequent Model Y models in North America.The highlight of this update is the activation of the hidden millimeter-wave radar hardware in the Model Y cockpit. This AWR6843 chip supplied by Texas Instruments, has three transmitting antennas and four receiving antennas, operating on a frequency band between 60-64 GHz, with a horizontal field of view of 120 degrees and a vertical field of view of 60 degrees.Once a

AshleyFeb 17, 2025
BYD Plans to Promote 1000V High Voltage Super Charging Stations and Its Models on a Large Scale

BYD Plans to Promote 1000V High Voltage Super Charging Stations and Its Models on a Large Scale

【PCauto】Recently, the news that BYD plans to massively implement a 1000V high-voltage supercharging platform has attracted widespread attention. It is reported that this platform will be launched in the middle of March this year and supports super-fast charging above 5C. After its release, it will quickly be popularized to its own models and large-scale construction of 1000V supercharging stations.This move will undoubtedly set off a wave in the new energy vehicle market. Let's delve into the te

JamesMar 3, 2025
XPENG G9 is about to be launched in China, bringing 66 upgrades in features

XPENG G9 is about to be launched in China, bringing 66 upgrades in features

【PCauto】XPENG has recently announced that the 2025 XPENG G9 will soon be launched in China. Although the official did not announce the time and price, the success of XPENG G6 and X9 has rekindled expectations for the once-failed G9 by XPENG. In terms of appearance, the G9 continues the X-BOT FACE 3.0 design language, with a closed grill at the front paired with split-style headlights on both sides, new two-tone collision colors and all-black body styles, with a petal-style wheel hub. Combining

RobertMar 6, 2025
Hyundai is to launch an all-solid-state EV battery production line, but who's leading?

Hyundai is to launch an all-solid-state EV battery production line, but who's leading?

【PCauto】News reveals that Hyundai will launch an all-solid-state EV battery production line next month, with a ceremony to be held at the next-generation battery research center in Uiwang, South Korea.This production line will serve as a pilot production for the all-solid-state 'Dream' EV battery. In 2023, Hyundai proposed plans to become a leader in the electric vehicle battery field, investing over $9 billion in the battery sector within 10 years, including Lithium Iron Phosphate (LFP) and Lit

MichaelFeb 12, 2025
Tesla's Texas factory was caught testing vehicles, suspected to be Model Q

Tesla's Texas factory was caught testing vehicles, suspected to be Model Q

【PCauto】Recently, a blogger captured a disguised Tesla test vehicle while filming a drone over Tesla's Texas super factory. This discovery has sparked widespread speculation, as the new Model Y has been openly pre-ordered and there is no need to disguise, so it is speculated that this car may be the cheapest model Model 2 or Model Q (internal code name Project Redwood) that Tesla plans to launch.Speaking of this mysterious Model Q, Musk has already revealed that it will be a "smaller" version of

JohnFeb 18, 2025
View More