LIVE · cybersecurity feed
privacymedium

Your next car could be watching your face

zeroday.news·5h ago

New car buyers in the European Union will soon find their vehicles equipped with mandatory driver-monitoring technology, a measure designed to enhance road safety. This requirement, effective July 7, 2026, mandates systems like Driver Drowsiness and Attention Warning (DDAW) and Advanced Driver Distraction Warning (ADDW) in all new vehicles sold within the bloc. The United States is also moving in a similar direction, with the National Highway Traffic Safety Administration (NHTSA) directed by the 2021 Infrastructure Investment and Jobs Act to develop regulations for advanced impaired driving prevention technology in new passenger vehicles.

While the specific implementation details are not yet finalized in the US, camera-based systems are widely anticipated. Many current technologies utilize infrared cameras to continuously monitor the driver's face and eyes for indicators of drowsiness, distraction, or potential impairment. This widespread adoption of monitoring technology, however, has sparked considerable debate among privacy advocates and civil liberties experts.

Key concerns revolve around the potential for constant biometric surveillance within the private space of a vehicle. Infrared cameras and other sensors can track eye movement, pupil dilation, and drowsiness patterns, effectively turning cars into environments where biometric data is perpetually assessed. This raises questions about who has access to this sensitive information and how it might be used.

Furthermore, the flow of data from these systems remains unclear, with worries that biometric data could be uploaded to manufacturer servers and potentially shared with third parties, such as insurance companies. While not explicitly mandated by law, critics fear this data could be used to adjust insurance premiums based on driving behavior, a practice that has precedents in other contexts.

Beyond privacy, the integration of these advanced systems is expected to increase vehicle costs, with estimates ranging from $100 to $500 per vehicle. This added expense is likely to be passed on to consumers already facing elevated car prices, despite the potential benefits to insurers through reduced accident claims.

Technical readiness and the potential for false positives are also significant concerns. Automakers worry that systems may not be fully reliable, leading to incorrect assessments of driver impairment. Poorly calibrated models could misinterpret fatigue, certain disabilities affecting eye or facial patterns, or even momentary distractions as impairment, potentially leading to the denial or limitation of vehicle operation.

Another area of concern is the evolving nature of these systems. Integrated into broader automotive software stacks, these monitoring technologies may receive over-the-air updates. This could lead to expanded monitoring capabilities after a vehicle has been purchased, without explicit consent or awareness from the owner.

Even organizations dedicated to road safety, like Mothers Against Drunk Driving (MADD), have voiced caution, emphasizing that vehicle technology standards must protect driver privacy and prevent the misuse of collected data for commercial or malicious purposes. Consumers looking to mitigate these risks when purchasing a new vehicle are advised to carefully review manufacturer privacy documentation, inquire about data retention and sharing practices, and disable optional features that may collect or share sensitive driver data.

privacyautomotivebiometricsregulationsurveillance
← Back to latest

More News

view all →
zeroday.news · 2h ago·high

China-Linked APT Expands Arsenal With New ‘Leash’ Backdoors

A China-linked advanced persistent threat (APT) group, identified as LapDogs, has reportedly enhanced its malicious toolkit. Security researchers have observed the deployment of three new backdoors: LongLeash, DogLeash, and JarLeash, which are designed to compromise small office/home office (SOHO) routers.

zeroday.news · 2h ago·high

RedWing Android Spyware Sold as a Service on Telegram

A new Android spyware called RedWing is being offered as a service on Telegram, allowing less sophisticated attackers to compromise phones and steal banking information. Researchers have identified it as a polished malware-as-a-service operation with extensive documentation and a subscription model, potentially linked to Russian threat actors. RedWing employs fake login overlays, SMS interception, call forwarding, and even screen control to harvest credentials and conduct further malicious activities.

zeroday.news · 3h ago·high

Operationalizing Day Minus Seven: The Cloud-Native ROC

The article introduces the concept of a Risk Operations Center (ROC) as a necessary evolution for cybersecurity teams facing AI-driven threats. It argues that traditional risk management models are insufficient due to the speed at which AI can discover and exploit vulnerabilities, especially in cloud environments. A ROC, powered by platforms like Qualys Enterprise TruRisk Management (ETM), aims to unify disparate security findings, hyper-prioritize risks based on exploitability and business impact, and enable autonomous remediation to keep pace with attackers.

zeroday.news · 3h ago·critical

Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OS

Ubiquiti has released security updates to address several critical vulnerabilities affecting its UniFi product line, including UniFi Connect, Talk, Access, Protect, and OS. These flaws could allow attackers to escalate privileges or execute arbitrary commands on affected devices. While no active exploitation has been reported for these specific vulnerabilities, the company has previously seen its UniFi OS and Edge OS products targeted by threat actors.

zeroday.news · 3h ago·high

Armored Likho Hits Government, Energy Sectors With BusySnake Stealer

Cybersecurity researchers have identified a new threat actor, dubbed Armored Likho, targeting government and energy sectors in Russia, Kazakhstan, and Brazil with a sophisticated phishing campaign. The operation utilizes a custom-built Python infostealer named BusySnake, designed to steal credentials, sensitive documents, and other high-value data. The attackers employ AI-generated payloads to obscure their activities and maintain persistence through various methods, including reverse SSH tunneling.

zeroday.news · 3h ago·critical

Attackers using Langflow flaw for credential harvesting (CVE-2026-55255)

CISA has issued a warning regarding a critical vulnerability (CVE-2026-55255) in the Langflow AI framework, which is being actively exploited by attackers. The flaw allows authenticated users to execute arbitrary flows belonging to other users, potentially leading to the theft of sensitive credentials and data exposure, especially in multi-tenant environments. US federal agencies have been mandated to patch this vulnerability by July 10th.