A code signing bypass for the VW Polo

This blog post is the latest of several demonstrating ongoing security vulnerabilities in devices categorised as being a part of the ‘Internet of Things’. This instalment will focus on the infotainment system of the Volkswagen® Polo®, and will reveal how the security checks which prevent modifications to its firmware can be circumvented by an attacker in order to allow privileged execution and unrestricted access to the infotainment system’s internals.

Article Link: https://www.contextis.com/en/blog/a-code-signing-bypass-for-the-vw-polo