Gone in six seconds? Exploiting car alarms

After purchasing and fitting several high-end ‘smart’ alarms to our cars, costing us ~$5,000, we discovered that two of the largest aftermarket alarm systems have critical security flaws that allow:

This affects up to 3 million vehicles globally. Except, using the account takeover vulnerability in the mobile app, one could kill the engine of any car fitted with these alarms. There is a route for vehicle owners with these alarms fitted to mitigate these attacks themselves, but it isn’t particularly satisfactory or advised: One could extract the SIM card from the alarm module in the car, though this may require some electronics skill and may affect warranties.

Source: www.pentestpartners.com