ADVERTISEMENT

Don’t trust links with known domains: BMW affected by redirect vulnerability

Sometimes, you can’t even trust links with your own domain. As the Cybernews research team has discovered, some BMW subdomains were vulnerable to redirect vulnerability, enabling attackers to forge links leading to malicious sites through them.

BMW subdomain vulnerability research

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
Jan 3, 2024 Updated: 4 January 2024 3 min read

BMW fixes the vulnerability

ADVERTISEMENT

How the redirect attacks work and how to avoid them

redirection-attack
  • SAP has released patches for the affected products that address the SAP redirect vulnerability. Applying these patches is the most effective way to mitigate the vulnerability.
  • To prevent injection attacks and other vulnerabilities, developers should follow secure coding practices and guidelines, such as the Open Web Application Security Project (OWASP) Top 10.
  • Regular security assessments can help identify vulnerabilities in systems and applications and allow for proactive remediation before attackers can exploit them.
ADVERTISEMENT