Skoda and Volkswagen Cars May Be Susceptible to Hacking Due to Infotainment System Vulnerabilities

Skoda Superb's infotainment system may allow malicious actors unrestricted code execution access.

Advertisement
Written by Shaurya Tomer, Edited by Siddharth Suvarna | Updated: 13 December 2024 15:51 IST
Highlights
  • Researchers discover vulnerabilities in the Skoda infotainment systems
  • It may allow remote code execution and vehicle location tracking
  • Skoda claims vulnerabilities have been addressed and eliminated

Skoda Superb III is reported to be one of the models impact by the vulnerabilities

Photo Credit: Skoda

Security researchers have discovered vulnerabilities of low-to-medium criticality in select Skoda and Volkswagen cars that may enable malicious actors to trigger certain controls, a cybersecurity firm announced at the Black Hat Europe 2024 event this week. At least 12 new vulnerabilities were found impacting the infotainment systems in the latest model of Skoda Superb III — a D-segment sedan manufactured by the Volkswagen Group which entered production in 2015. Although threat actors would need to connect to the vehicle via Bluetooth to get access, the attack may be carried even from a distance.

This builds upon the previous discovery of nine security flaws in the same vehicle that were reported last year.

Vulnerabilities in Skoda Cars

Cybersecurity firm PCAutomotive published a report detailing the vulnerabilities discovered in the third-generation model of Skoda Superb. The German sedan's MIB3 infotainment system may allow malicious actors unrestricted code execution access, enabling them to run malicious code upon startup. It is said to provide remote access to the vehicle's systems.

Advertisement

They may be able to track its speed and location in real time, eavesdrop on the in-car microphone, play sounds, and control its infotainment system. Another flaw may allow them exfiltrate the phone contact database if contact synchronisation with the phone is enabled. Further, the vulnerabilities could also allow access to the CAN bus which is used to connect with the vehicle's electronic control units (ECUs).

Although there are many suppliers of the MIB3 infotainment system, the researchers specifically talk about the one manufactured by Preh Car Connect Gmbh. It impacts the following models:

  1. Skoda Superb III
  2. Skoda Karoq
  3. Skoda Kodiaq
  4. VW Areteon
  5. VW Tiguan
  6. VW Passat
  7. VW T-Roc
  8. VW T-Cross
  9. VW Polo
  10. VW Golf

The sales data suggests that a total of 1.4 million vehicles from the Volkswagen Group are at risk. PCAutomotive reported the vulnerabilities to Skoda as part of its cybersecurity disclosure program. In a statement given to TechCrunch, Skoda revealed that they have been addressed and eliminated. “At no time was and is there any danger to the safety of our customers or our vehicles”, the German automotive company said.

 
Post your comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Realme 14x 5G Confirmed to Pack 6,000mAh Battery; Charging Details Revealed
Naughty Dog Reveals Intergalactic: The Heretic Prophet, a New Sci-Fi Franchise for PS5
Advertisement

Related Stories

James Webb Offers First Glimpse Into How Moons Are Built Around Distant Planets
1 October 2025
James Webb Telescope Unveils Hidden Star-Forming Regions in Sagittarius B2
1 October 2025
Orionid Meteor Shower 2025: When and How to Watch Stunning Shooting Stars
1 October 2025
Million Dollar Listing: India Season 2 Streaming Now on OTT: Know When and Where to Watch it Online.
1 October 2025
Dill Bill is Now Streaming Online: Know Everything About its Cast, Story, Release Date, and More
1 October 2025
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Motorola Edge 70 5G Price Leaked Ahead of Global Launch
  2. iQOO 15 Confirmed to Launch With This Useful Charging Upgrade
  3. Nothing OS 4.0 With New Features Is Available for These Nothing Phones
  4. Realme 15x 5G With 7,000mAh Battery Launched in India: See Price
  5. First Look: Redesigned Amazon Kindle Scribe Lineup With First-Ever Color Scribe
  6. Samsung Reportedly Revives Galaxy S26+ Due to Galaxy S25 Edge's Low Sales
  7. James Webb Telescope Unveils Hidden Star-Forming Regions in Sagittarius B2
#Latest Stories
  1. James Webb Offers First Glimpse Into How Moons Are Built Around Distant Planets
  2. James Webb Telescope Unveils Hidden Star-Forming Regions in Sagittarius B2
  3. Orionid Meteor Shower 2025: When and How to Watch Stunning Shooting Stars
  4. Million Dollar Listing: India Season 2 Streaming Now on OTT: Know When and Where to Watch it Online.
  5. Dill Bill is Now Streaming Online: Know Everything About its Cast, Story, Release Date, and More
  6. Little Hearts (2025) Telugu OTT Release: What You Need to Know about its Cast, Plot, Trailer, and More
  7. JWST Delivers First-Ever Weather Report of Rogue Brown Dwarf World Glowing With Auroras
  8. Made In India: A Titan Story OTT Release Date: Know When and Where to Watch it Online
  9. Halo Studios to Host a "Deep Dive" on Halo Games in Development This Month
  10. Tata Communications Partners BSNL to Offer eSIM Services Across India
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.