MZD Connect infotainment systems can be hacked just by plugging in a USB flash drive into their dashboard. Bugcrowd application security engineer Jay Turla’s mazda_getInfo allows anyone to copy a collection of scripts on USB flash drives, insert it into their car’s dashboard, and execute malicious code. Turla says his script is perfect to re-enable SSH support in the MZ Connect system after the feature has been disabled in previous firmware updates. The attack executes automatically right after the user inserts the USB inside a car’s. dashboard.
Source: https://www.bleepingcomputer.com/news/security/you-can-hack-some-mazda-cars-with-a-usb-flash-drive/