Securelist's report on the security vulnerabilities in Android-based "connected cars" describes how custom Android apps could be used to find out where the car is, follow it around, unlock its doors, start its engine, and drive it away.
They reported their findings yesterday at the RSA conference. It's a timely reminder that cars are just computers we put our bodies into.
"The main conclusion of our research is that, in their current state, applications for connected cars are not ready to withstand malware attacks," said Chebyshev.
"We expect that car manufacturers will have to go down the same road that banks have already gone down with their applications. Initially, apps for online banking did not have all the security features listed in our research," the expert added. "Now, after multiple cases of attacks against banking apps, many banks have improved the security of their products."
"Luckily, we have not yet detected any cases of attacks against car applications, which means that car vendors still have time to do things right," Chebyshev noted. "The attack surface is really vast here."
Mobile apps and stealing a connected car [Mikhail Kuzin and Victor Chebyshev/Securelist]
Millions of Smart Cars Vulnerable Due to Insecure Android Apps
[Catalin Cimpanu/Bleeping Computer]
US court records are not copyrighted, but the US court system operates a paywall called “PACER” that is supposed to recoup the costs of serving text files on the internet; charging $0.10/page for access to the public domain, and illegally profiting to the tune of $80,000,000/year.
Semihandmade started out as a Los Angeles cabinetmaker called “Handmade,” but when they got a commission to design aftermarket doors for a cheap and surprisingly robust set of Ikea kitchen cabinets, they realized that they could supply excellent-looking, high-spec kitchens at a tiny price by just manufacturing replacement doors for Ikea’s ubiquitous cabinetry.
The mystery of yesterday’s India-wide censorship orders which blocked the Internet Archive from the world’s largest democracy has been solved: it was the result of complaints by two Bollywood studios, Prakash Jha Productions and Red Chillies Entertainment, who chose to target infringing copies of their movies by securing an injunction at the High Court of […]
The Pry.Me Bottle Opener holds tens of thousands of times its own weight, and you can pick one up now from the Boing Boing Store.This remarkable keychain is considerably smaller than any of your keys, but don’t let that fool you: it can easily open any bottle, and could even tow a trailer full of […]
Guaranteeing your privacy online goes way beyond checking the “Do Not Track” option in your browser’s settings. To ensure that your internet activity is totally hidden from Internet Service Providers, advertisers, and other prying eyes, take a look at Windscribe’s VPN protection. It usually costs $7.50 per month, but you can get a 3-year subscription […]
This project management bundle will help you get organized and learn how to lead a team to success. You can pay what you want for these five courses when you pick them up from the Boing Boing Store.To help you become an invaluable asset for your company, this bundle includes a curated collection of professional […]