Securelist's report on the security vulnerabilities in Android-based "connected cars" describes how custom Android apps could be used to find out where the car is, follow it around, unlock its doors, start its engine, and drive it away.
They reported their findings yesterday at the RSA conference. It's a timely reminder that cars are just computers we put our bodies into.
"The main conclusion of our research is that, in their current state, applications for connected cars are not ready to withstand malware attacks," said Chebyshev.
"We expect that car manufacturers will have to go down the same road that banks have already gone down with their applications. Initially, apps for online banking did not have all the security features listed in our research," the expert added. "Now, after multiple cases of attacks against banking apps, many banks have improved the security of their products."
"Luckily, we have not yet detected any cases of attacks against car applications, which means that car vendors still have time to do things right," Chebyshev noted. "The attack surface is really vast here."
Mobile apps and stealing a connected car [Mikhail Kuzin and Victor Chebyshev/Securelist]
Millions of Smart Cars Vulnerable Due to Insecure Android Apps
[Catalin Cimpanu/Bleeping Computer]
Ten years ago, Apple released the Ipad. I was in a hotel room in Seattle, jetlagged and awake at 4AM while my wife and daughter slept.
Last year, the EU adopted the incredibly controversial Copyright Directive (it passed by only five votes, and afterwards 10 MEPs said they'd got confused and pushed the wrong buttons!): now, EU member states have to create rules that require online platforms to filter all user-generated content and block it if it matches a secret, unaccountable […]
Back in 2017, the World Wide Web Consortium (W3C) approved the most controversial standard in its long history: Encrypted Media Extensions, or EME, which enabled Netflix and other big media companies to use DRM despite changes to browsers extensions that eliminated the kinds of deep hooks that DRM requires.
The dreaded tax season is nearly upon us, and that means it’s time to start the process of gathering all of the expenses that will give you the largest deduction possible. The Quickbooks Pro Desktop Certification Bonus Bundle will help take the headaches out of this miserable processes by teaching you how to use one […]
You don’t need to be a climate scientist in order to know that the Earth is in serious trouble, but the good news is that you also don’t need to necessarily make any drastic changes to your lifestyle in order to do your part to help. This nOcean Wearable Reusable Silicone Straw will help you […]
When it comes to conquering that resolution list and hitting all of your goals in 2020, nothing is more important than getting a great night’s sleep every night so you can wake up feeling refreshed and extra productive. The CarbonIce: 7-in-1 Bacteria Protection & Cooling Pillow will help you do just that, and right now […]
