Last month, Argus Security, an automotive security company, notified us of an issue in our device software that we worked to address immediately. We have no evidence that any customer’s vehicles were compromised. Since learning about the reports from Argus, we took swift action and made the appropriate changes to our development process in order to further strengthen our overall security practices.
Zubie takes security very seriously and we are constantly monitoring the evolving telematics landscape to ensure we are defending against the latest possible threats. As part of its continued effort, Zubie has gone through system-wide security testing to protect the safety of both its customers and products. We work closely with the NCC Group, an international security firm with expertise in improving automotive cyber security, to conduct end-to-end audits of our entire solution.
“Using our knowledge and experience of working in the automotive sector, we worked closely with Zubie’s engineers to incorporate our findings into Zubie’s development process and further support its ongoing customer security requirements,” said Ollie Whitehouse, Technical Director, NCC Group.
We appreciate Argus’ help in disclosing this issue in a responsible manner to help improve our overall security posture and increase protection for our customers.
Zubie embraces the practice of responsible disclosure, as it helps us achieve our mission of making driving safer, easier, and less expensive for everyone.
-Tim Kelly, CEO of Zubie