Are our data really safe in modern cars? How will we manage AI? From compliance to quantum cryptography, here are the key lessons and surprising insights I took away from ESCAR 2025.
Was that vehicle data extracted from an Apple Carplay / Android Auto vehicle infotainment system?
It always surprises me when people connect their phones to the infotainment system in hire cars. Will they remember to do a delete befofe handing the hire car back? And even if they do delete their phone from the car, is that data really erased securely?
So does that mean in theory you can get hold of the phone address books of every phone that has been connected to a car via Android Auto / Apple Carplay ?
I wouldn’t generalize it that much. All we can say for sure is that in that version of SW and that specific manufacturer, the vulnerability exists and it’s easily exploitable. It’s possible that other manufacturers don’t store this data.
There were more preconditions than the usage of Android Auto.
But it’s definitely good to take into account before connecting in a car that isn’t yours.
Was that vehicle data extracted from an Apple Carplay / Android Auto vehicle infotainment system?
It always surprises me when people connect their phones to the infotainment system in hire cars. Will they remember to do a delete befofe handing the hire car back? And even if they do delete their phone from the car, is that data really erased securely?
As a matter of fact it was! I believe it was an Android Auto infortainment system.
Well, I guess that’s answers your other questions. I don’t think you can currently “delete” the data from the vehicle.
So does that mean in theory you can get hold of the phone address books of every phone that has been connected to a car via Android Auto / Apple Carplay ?
I wouldn’t generalize it that much. All we can say for sure is that in that version of SW and that specific manufacturer, the vulnerability exists and it’s easily exploitable. It’s possible that other manufacturers don’t store this data.
There were more preconditions than the usage of Android Auto.
But it’s definitely good to take into account before connecting in a car that isn’t yours.