General Motors

The Chevrolet Camaro ZL1, a high-performance vehicle, has been identified as the most stolen car in the U.S., with theft rates 39 times higher than the average. The vulnerability lies in the on-board ports, which thieves exploit to gain unauthorized access. This issue affects model years 2022-2024, leading to significant financial losses and reputational damage for General Motors. The company has released a software update to mitigate the vulnerability, but the incident highlights a critical security flaw in their vehicle design.

Source: https://www.cbsnews.com/news/most-stolen-cars-chevrolet-camaro-zl1-theft-rates/

TPRM report: https://www.rankiteo.com/company/general-motors

"id": "gen347080725",
"linkid": "general-motors",
"type": "Vulnerability",
"date": "6/2022",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'industry': 'Automotive',
                        'location': 'United States',
                        'name': 'General Motors',
                        'type': 'Automotive Manufacturer'}],
 'attack_vector': 'Exploitation of on-board ports',
 'description': 'The Chevrolet Camaro ZL1 has been identified as the most '
                'stolen car in the U.S., with theft rates 39 times higher than '
                'the average for 2022-2024 models. The vulnerability lies in '
                'on-board ports that can be exploited by thieves with the '
                'right knowledge and technology. General Motors released a '
                'software update to address this issue.',
 'impact': {'brand_reputation_impact': 'Potential negative impact on '
                                       "Chevrolet's reputation"},
 'initial_access_broker': {'entry_point': 'On-board ports',
                           'high_value_targets': 'Chevrolet Camaro ZL1'},
 'motivation': 'High horsepower and resale value',
 'post_incident_analysis': {'corrective_actions': 'Software update to improve '
                                                  'security',
                            'root_causes': 'Vulnerability in on-board ports'},
 'references': [{'source': 'Highway Loss Data Institute (HLDI)'},
                {'source': 'Car and Driver'},
                {'source': 'CBS MoneyWatch'},
                {'source': 'GM Authority'}],
 'response': {'law_enforcement_notified': 'Yes',
              'remediation_measures': 'Software update for 2020-2024 Camaro '
                                      'models'},
 'threat_actor': 'Auto Thieves',
 'title': 'High Theft Rates of Chevrolet Camaro ZL1 Due to Vulnerability',
 'type': 'Vehicle Theft',
 'vulnerability_exploited': 'On-board ports containing vehicle data'}

General Motors

OpenJS Foundation: Critical Vulnerability in JavaScript Cryptography Library Poses Security Risk

New Vulnerability Affects All Intel Processors From The Last 6 Years

Meta (WhatsApp)