Securelist's report on the security vulnerabilities in Android-based "connected cars" describes how custom Android apps could be used to find out where the car is, follow it around, unlock its doors, start its engine, and drive it away.
They reported their findings yesterday at the RSA conference. It's a timely reminder that cars are just computers we put our bodies into.
"The main conclusion of our research is that, in their current state, applications for connected cars are not ready to withstand malware attacks," said Chebyshev.
"We expect that car manufacturers will have to go down the same road that banks have already gone down with their applications. Initially, apps for online banking did not have all the security features listed in our research," the expert added. "Now, after multiple cases of attacks against banking apps, many banks have improved the security of their products."
"Luckily, we have not yet detected any cases of attacks against car applications, which means that car vendors still have time to do things right," Chebyshev noted. "The attack surface is really vast here."
Mobile apps and stealing a connected car [Mikhail Kuzin and Victor Chebyshev/Securelist]
Millions of Smart Cars Vulnerable Due to Insecure Android Apps
[Catalin Cimpanu/Bleeping Computer]
As I wrote last week, the California Farm Bureau (which lobbies for the state's farmers) struck a deal to gut the state's Right to Repair legislation, a move that will cost farmers their right to fix their own tractors and other heavy equipment.
Last week's catastrophic EU vote to censor and surveil the whole internet to catch copyright infringers isn't a local affair; the same corporations who were willing to sacrifice the internet to eke out a few percentage point gains in licensing revenue are busily at work in Canada, where a rewrite of copyright laws is underway.
As part of yesterday's International Day Against DRM, Public Knowledge's John Bergmayer published It’s Always DRM’s Fault, which uses this month's viral story about an Apple user named Anders G da Silva whose movie was deleted from his Itunes because he moved from one country to another.
iOS 12 is finally here, which means now is the best time for aspiring developers to throw their hats into the app development game. While app development can be tricky for some, you can take an intuitive, beginner-friendly approach to understanding app creation and Apple’s latest iOS platform with the iOS 12 & Xcode 10 Bootcamp, […]
It might still be September, but the holiday season will be here before you know it, which means now is the time to think about where you want to vacation to—and what to do once you get there. To this end, we’ve scoured the Web and tracked down a number of travel hacking ebooks, gadgets, […]
The human eye is a beautiful, incredible thing, but it’s far from perfect, especially when it comes to examining objects up close. Capable of magnifying objects up to 1,000 times, this portable microscope camera lets you see wonders hidden to your regular vision, and it’s on sale today for $38.99. Don’t let its compact size fool […]