1. Residential Customers
  2. Business Customers
  3. About Swisscom
  4. blue News
  1. My Swisscom
  3. myCloud
  4. TV
  5. Phone book
EN
Weather
  1. blue News
  1. Entertainment
  1. Sport
Swisscom Services
  1. Phone Book
  3. Web TV
  4. My Swisscom
Swisscom Apps
  1. Swisscom blue News & E-Mail
  2. Swisscom blue TV
  3. Swisscom blue Cinema
  4. Swisscom myCloud
Language
  1. English
  2. Deutsch
  3. Français
  4. Italiano

Swiss cars also affected Data from 800,000 VW cars were unprotected on the internet

dpa

27.12.2024 - 18:37

Security gap closed: According to the VW Group, there is "no need for customers to take any action".
Security gap closed: According to the VW Group, there is "no need for customers to take any action".
Archivbild: dpa

The already ailing VW Group can't escape the headlines. Movement data of e-cars and contact information of owners are said to have been unprotected on the internet.

DPA

27.12.2024, 18:37

27.12.2024, 23:10

No time? blue News summarizes for you

  • According to a media report, there has been a data leak at the VW software subsidiary Cariad.
  • Movement data from 800,000 e-cars and information on owners is said to have ended up unprotected on the internet, as reported by Der Spiegel.
  • Around 22,000 Swiss cars were also affected.
Show more

According to a media report, there has been a data leak at the VW software subsidiary Cariad. Movement data from 800,000 e-cars in Europe and contact information for owners is said to have been exposed on the internet, as reported by DerSpiegel.

Due to a software error, data from VW, Seat, Audi and Skoda vehicles had been accessible in an Amazon cloud storage system for months, the paper writes. According to the report, precise location data on 460,000 vehicles could have been viewed, which would have allowed conclusions to be drawn about the lives of the people behind the wheel.

The VW Group announced that the error has since been rectified. Sensitive information such as passwords or payment data had not been affected. Apart from the Chaos Computer Club (CCC), which drew Cariad's attention to the error on November 26, no one had accessed the data, according to a statement.

Only data from selected vehicles that were registered for online services and had online connectivity were affected. According to the company, this involved data on charging behaviour and charging habits in order to optimize battery and charging software. "The data was accessed in a very complex, multi-stage process."

VW: No conclusions about individual persons

The CCC was able to access pseudonymized vehicle data that did not allow any conclusions to be drawn about individual persons. "Only by circumventing several security mechanisms, which required a high level of specialist knowledge and a considerable amount of time, and by combining various data sets, was it possible for the CCC to draw conclusions about individual customer data from specific users," it continues.

At no time did the CCC have access to vehicles. "The final analysis of the incident has not yet been completed and will require further work due to its complexity." Once this analysis has been completed, further steps will be decided if necessary.