Securelist's report on the security vulnerabilities in Android-based "connected cars" describes how custom Android apps could be used to find out where the car is, follow it around, unlock its doors, start its engine, and drive it away.
They reported their findings yesterday at the RSA conference. It's a timely reminder that cars are just computers we put our bodies into.
"The main conclusion of our research is that, in their current state, applications for connected cars are not ready to withstand malware attacks," said Chebyshev.
"We expect that car manufacturers will have to go down the same road that banks have already gone down with their applications. Initially, apps for online banking did not have all the security features listed in our research," the expert added. "Now, after multiple cases of attacks against banking apps, many banks have improved the security of their products."
"Luckily, we have not yet detected any cases of attacks against car applications, which means that car vendors still have time to do things right," Chebyshev noted. "The attack surface is really vast here."
Mobile apps and stealing a connected car [Mikhail Kuzin and Victor Chebyshev/Securelist]
Millions of Smart Cars Vulnerable Due to Insecure Android Apps
[Catalin Cimpanu/Bleeping Computer]
The Eastern District of Texas is home to a crooked court that is in the pocket of patent trolls, handing down ludicrous rulings in favor of the trolls, whose "head offices" are tiny, unoccupied offices in empty, dusty office buildings, the rent on which entitles patent trolls to claim that their rights are being infringed […]
Last year while I was on tour in Australia with my novel Walkaway, I sat down for an interview with legal scholar Rebecca Giblin (previously), whose Authors' Interest project studies how we would craft copyright (and other policies) if we wanted to benefit creators, rather than enriching corporations; we talked about the power and limits […]
Last August, Florida's prison system announced that it was switching digital music providers and would be wiping out the $11.2 million worth of music that it had sold inmates -- music they'd paid for at $1.70/track, nearly double the going rate for music when not purchased from prison-system profiteers.
Looking to de-clutter your kitchen counter? Start with those multiple, tangled charging cables for your multiple, power-hungry devices. There’s a workhorse solution for all those power needs, and it’s just as just as well suited to travel as home use: The Scout Wireless 5000mAh Charger. Compact and sleek at nine ounces, it doesn’t look like […]
Use a single password for every website, and you’re compromising your security. Use a different one each time, and you’re bound to lose track of them. The solution? RoboForm Everywhere, a catch-all tool that will not only manage the passwords on every site you visit but generate better ones. As a simple password database, it’s […]
Just a reminder: Print isn’t dead. And now that printers are becoming as portable as cell phones, it might be around for quite some time. Enter the MEMOBIRD Mobile Thermal Printer, a mini-printer that is versatile, portable – and most importantly, never needs a refill on ink or toner. Measuring just a few inches around, […]
