As I read the article:
Car Makers Haven’t Learned: Insecure Apps Expose Millions Of Connected Cars To Theft, Risks. I was reminded (again) that an issue for IoT devices is that their manufacturers have been slow to implement security for the software that runs on them. The focus has been on getting them out as quickly and as inexpensively as possible.
The auto industry is beginning to provide higher value apps to make communication and sharing of vehicle and other data possible. These apps and their API libraries may be susceptible to reverse-engineering and tampering attacks that could lead to serious issues.
It is time for the IoT industry as a whole to take steps to protect the integrity of their code and data against hackers and those that would exploit it. These apps are worth protecting and the time to start is now.