More and more devices are becoming connected, and so are vehicles. And everything has an App nowadays.
While this is really convenient to the end-user (“Where did I park again?”, “OMG, looks like someone tries to steal my ride!”) there are certain concerns: Who else can access the location data? Can my ride be remotely hacked/blocked/detonated? But also: Can I modify my vehicle to do XYZ? What information can I retrieve that is not visble through the corresponding App?
This talk will cover the analysis of the App, web service, and vehicle connectivity (GSM) of a popular E-Scooter, discussing weaknesses and potential vulnerabilities, but also highlight positive aspects of the implementation.