Securelist's report on the security vulnerabilities in Android-based "connected cars" describes how custom Android apps could be used to find out where the car is, follow it around, unlock its doors, start its engine, and drive it away.
They reported their findings yesterday at the RSA conference. It's a timely reminder that cars are just computers we put our bodies into.
"The main conclusion of our research is that, in their current state, applications for connected cars are not ready to withstand malware attacks," said Chebyshev.
"We expect that car manufacturers will have to go down the same road that banks have already gone down with their applications. Initially, apps for online banking did not have all the security features listed in our research," the expert added. "Now, after multiple cases of attacks against banking apps, many banks have improved the security of their products."
"Luckily, we have not yet detected any cases of attacks against car applications, which means that car vendors still have time to do things right," Chebyshev noted. "The attack surface is really vast here."
Mobile apps and stealing a connected car [Mikhail Kuzin and Victor Chebyshev/Securelist]
Millions of Smart Cars Vulnerable Due to Insecure Android Apps
[Catalin Cimpanu/Bleeping Computer]
Ten years ago, Apple released the Ipad. I was in a hotel room in Seattle, jetlagged and awake at 4AM while my wife and daughter slept.
Last year, the EU adopted the incredibly controversial Copyright Directive (it passed by only five votes, and afterwards 10 MEPs said they'd got confused and pushed the wrong buttons!): now, EU member states have to create rules that require online platforms to filter all user-generated content and block it if it matches a secret, unaccountable […]
Back in 2017, the World Wide Web Consortium (W3C) approved the most controversial standard in its long history: Encrypted Media Extensions, or EME, which enabled Netflix and other big media companies to use DRM despite changes to browsers extensions that eliminated the kinds of deep hooks that DRM requires.
With all due respect to our vegetarian friends, there might be nothing more intrinsically linked to the 4th of July holiday than a big ole cookout. Sure, fireworks and celebrating the birth of a constitutional republic are great too, but showing off your cooking prowess with a brilliantly seared, mouth-watering slab of grade-A American beef […]
We’re at the midway point of 2020. So…how’s the year going for you so far? Yeah…we can guess. But while there’s a lot about 2020 we can’t directly control, maybe a little retail therapy can help make you feel better. Sure, the 39 items we gathered together can absolutely bring a smile to your face. […]
When revved-up kids used to dribble a basketball through the kitchen or practice their footwork with a soccer ball in front of the television, exasperated parents would often just send ‘em outside to play. But these days, sending kids out might not be the best course of action. Despite all the changes, many budding young […]