HCC PSIRT

Hirschmann Car Com­mu­nic­a­tion main­tain the highest stand­ards for the product secur­ity. Our Product Secur­ity Incid­ent Response Team (PSIRT) serves as central point of contact for report­ing poten­tial vul­ner­ab­il­it­ies or cyber­se­cur­ity incid­ents related to our products.

We encour­age cus­tom­ers, part­ners, secur­ity research­ers, and other extern­al parties to respons­ibly report suspect vul­ner­ab­il­it­ies or secur­ity-rel­ev­ant obser­va­tions to us. Each report is reviewed by our PSIRT and handled in accord­ance with our estab­lished intern­al pro­cesses.

Information required for a report

Please provide the fol­low­ing inform­a­tion – if avail­able — to enable effi­cient hand­ling of your report:

  • Descrip­tion of the sus­pec­ted vul­ner­ab­il­ity or incid­ent
  • Affected product, system or soft­ware com­pon­ent
  • Product version, soft­ware release or series number
  • Time and nature of obser­va­tion
  • Poten­tial impact and asso­ci­ated risks
  • Steps to repro­duce the issue
  • Avail­able logs, screen­shots or other rel­ev­ant evid­ence
  • Your contact details for follow-up ques­tions (option­al)

 

Incom­plete reports will also be reviewed.

Reporting Notes

We appre­ci­ate every report and value the support in identi­fy­ing poten­tial vul­ner­ab­il­it­ies. All sub­mit­ted inform­a­tion is care­fully reviewed and used to con­tinu­ously improve our products and intern­al pro­cesses.

Please note that we are cur­rently able to process reports only in German or English.

We also kindly request that all inform­a­tion exchanged as part of a report be treated con­fid­en­tially. In par­tic­u­lar, we ask you to not share secur­ity-rel­ev­ant details with third parties or pub­licly dis­closed before a coordin­ated cla­ri­fic­a­tion with us has taken place.

PSIRT Hirschmann Car Communication GmbH

psirt@hirschmann-car.com