On November 20, 2024, Shubham Shah and I discovered a security vulnerability in Subaru’s STARLINK admin panel that gave us unrestricted access to all vehicles and customer accounts in the United States, Canada, and Japan.
I have a 9-year old Subaru I bought used, first thing I did was trash the “radio” and replace it with an iDoing chinese Android head unit.
It’s not super polished, but much better than the trash Subaru put on it. The good thing they did was NOT integrate it into the car too much, so replacing it meant losing no functionality at all.
I have a 9-year old Subaru I bought used, first thing I did was trash the “radio” and replace it with an iDoing chinese Android head unit.
It’s not super polished, but much better than the trash Subaru put on it. The good thing they did was NOT integrate it into the car too much, so replacing it meant losing no functionality at all.