If you own an electric vehicle, keep an eye on cybersecurity issues that may affect your car and its accessories. You wouldn’t think that an electric vehicle charger could include a vulnerability that allows threat actors to access information, but the Cybersecurity & Infrastructure Security Agency (CISA) issued an Alert on July 15, 2025, warning of that capability.
According to the Alert, which relates to Liteon IC48A and IC80A electric vehicle chargers, the vulnerability may allow a threat actor to access the charger and obtain sensitive information, including the plain text password of the owner.
LITEON has released the following firmware versions for the following EV chargers:
- LITEON IC48A: Firmware versions 01.00.20h
- LITEON IC80A: Firmware versions 01.01.13m”
CISA advised that if you need more information, contact Liteon.
If you own a Liteon IC48A or IC80A electric vehicle charger, CISA and Liteon recommend that you update the firmware with the latest versions. If you are unsure if you own a Liteon charger, pictures are readily accessible online. An electric vehicle charger connected to the internet is no different than any other device, and is potentially vulnerable. Keeping track of all internet-connected devices, and staying abreast of patching is important for attack prevention.