Tuesday, August 2, 2016

What happens when someone pwns your car when you're driving?

Nothing good:
Car hackers Charlie Miller and Chris Valasek have again hacked a 2014 Jeep Cherokee, this time by physically linking a laptop to commandeer its steering and kill the brakes. 
The duo have captured the hack to be presented at Black Hat Las Vegas this week in video proof-of-concept demonstrations. 
The compromise requires attackers to be physically present in order to compromise the car. 
However Miller confirmed this writer's suggestion that the attacks could be carried out using a concealed device which either contains automated and timed commands, or iwth remote attacks over a wireless link.
Watch the horror unfold:



We're in the early stages of people figuring out what the attack vectors are, but those will develop and grow more sophisticated over time.  That '67 GTO is looking safer and safer ...

I know people who used epoxy to fill USB connectors.  I'm thinking about doing this to the Wrangler's computer interface connector.

Security wasn't an afterthought.  It wasn't thought of at all.

3 comments:

  1. Note that they're picking on Jeep, and not Government Motors, even though they admitted that the Cadillac Escalade was as easy to hack. Do you understand why? Also note how many vehicles share the same architecture as that Cadillac...

    ReplyDelete
  2. Lots of 'opportunities'... And none good...

    ReplyDelete
  3. And, beyond the contacts in the bumpers, what logic circuitry needs to be made to fire the airbag?

    ReplyDelete

Remember your manners when you post. Anonymous comments are not allowed because of the plague of spam comments.