Source Code of Car Breathalyzer Firm Allegedly Dumped Online
Technology // Transportation
A hacker who goes by the handle ROR[RG] apparently posted internal documents of LMG Holdings and at least one of its subsidiaries -- LifeSafer, which describes itself as a leader in "ignition interlock technology." The tech prohibits a vehicle from starting if a required in-car breath test of the driver detects inebriation.
LifeSafer claims to have more than 70,000 of its devices installed across 46 states.
“LMG full data fucking ripped,” ROR[RG] posted on a hacker forum called Hell. The message was published within the past few days.
The site provides a link to a list of files, before adding “pay up or get fucked!,” suggesting that the dump may have been part of an extortion scheme. Dates on the data in the directory imply that a small amount of it was uploaded on Jan. 7, followed by two larger dumps on Jan. 9.
It is unclear how ROR[RG] obtained the files.
The contents include instruction manuals for modifying and assembling products, as well as detailed schematics of various goods. The documents lay out the behind-the-scenes mechanics of LifeSafer's products. Some of the files date back to 2006, with one disclaiming that “Unauthorized use, possession or duplication will result in Severe [sic]civil and criminal penalties.”
On top of this cache, several folders contain files that appear to be proprietary source code for various devices. One section of the dump, labeled as “FC100_Camera_Reference_Material,” includes supposed boot loaders and other code for the device.
LifeSafer confirmed with Fortune that the company was indeed hacked.
“We have discovered unauthorized access to certain company information,” said Charles Loepp, a LifeSafer spokesman told Fortune in an email. “As soon as we became aware of the situation, we launched an immediate investigation and are working closely with the Federal Bureau of Investigation and a leading forensics IT firm to investigate the threat and protect any information at risk.”