A vulnerability present in MiCODUS MV720 is allowing cyber criminals to remotely hack them and take control of their in-house data & controls. A team of security researchers from BitSight discovered that the Chinese vendor which offers GPS trackers is suffering from 5 flaws that could lead to physical stoppage of vehicles, or track the moment of the vehicle leading to serious security concerns.
The product that looks like a relay, but is actually a locator, is often used as a Global Positioning System in about 1.5 million cars.
CISA issued an advisory on the issue stating the flaw as critical as it can negatively impact vehicle fuel supply systems, navigation controls and could allow threat actors to monitor vehicles from remote connections.
Interestingly, the products developed by MiCODUS are being used by over 420,000 US customers across military, law enforcement, government and almost 70 of Fortune 1000 companies.
Micodus also has users from other countries such as Europe, mainly linked to transportation, manufacturing and the logistics sector.
As of now, a fix is awaited!
And till then, BitSight is urging users to disable their MiCODUS MV720 GPS Trackers till a patch is issued to the flaw.
NOTE- MiCODUS offers world class products mainly belonging to the automotive field of electronics and accessories. In the past two decades, the company has built a trust among its users, paving the way for its stupendous business growth. However, controversies such as the one mentioned above can push the business into deep trouble.
