The most interesting Internet-connected vehicle hacks on record

ZDNet

You would have to be a particular breed of person to tamper with the brakes or steering of a car with a helpless driver-turned-passenger inside, but the concept of car hacking is still a reality today. Several years ago, a team of IOActive researchers demonstrated how they could compromise a connected car system in order to run a Jeep off the road. Since then, automakers and connected vehicle service vendors have begun to take the concept of car cybersecurity seriously. The company in question has been tracking cybersecurity practices (.PDF) in the automotive industry for a number of years. According to the firm, automakers are now introducing security measures at the start of manufacture more often but back-end systems still have a way to catch up, with many "low-hanging fruit" vulnerabilities still in existence.


Mitsubishi Outlander car alarm can be hacked through Wi-Fi

ZDNet

Vulnerabilities in the Mitsubishi Outlander's Wi-Fi console allow cyberattackers to turn off car alarms before potentially stealing the vehicle, researchers have found. On Monday, security experts from PenTestPartners said the Japanese firm's Outlander plug-in hybrid electric vehicle (PHEV), a popular family SUV, is vulnerable to an attack which could result in attackers using the car's connectivity to turn off alarm systems and compromise the vehicle. The cyberattack takes place through the Outlander's Wi-Fi module and can not only be used to disengage alarms but can also be used to fiddle with settings and drain battery life. Car thieves can buy themselves time by disabling the alarm, giving them a chance to start the car through various means and make off with the vehicle. According to the research team, the problem lies within the "unusual" way the car's mobile application connects to the vehicle.


A flaw in a connected alarm system exposed vehicles to remote hacking

ZDNet

A bug that allowed two researchers to gain access to the backend systems of a popular internet-connected vehicle management system could have given a malicious hacker everything they needed to track the vehicle's location, steal user information, and even cut out the engine. In a disclosure this week, the researchers Vangelis Stykas and George Lavdanis detailed a bug in a misconfigured server run by Calamp, a telematics company that provides vehicle security and tracking, which gave them "direct access to most of its production databases." Car hacking has become a major focus in the security community in recent years, as more vehicles are hooked up to the cellular internet. But while convenient to control your car from your phone, it's also opened up new points for attack -- which could have real-world consequences. You might not even realize you're a Calamp user.


'Unhackable' Bitfi wallet circus delights security researchers with hacking challenge

ZDNet

The Bitfi cryptocurrency wallet, touted as an "unhackable" system, appears to have been hacked a week after launch. Backed by technology personality John McAfee, the Bitfi cryptocurrency wallet claims to have "fortress-like" security and the product's "security is absolute and that the wallet cannot be hacked or penetrated by outside attacks." Available for $120, the hardware connects to an online dashboard for users to keep an eye on their funds and access their cryptocurrency. The device and online platform sync through a Bitfi ID and when transactions are made, users input a phrase to generate a private key. "Your private keys are NEVER stored anywhere except your own brain, and this is precisely why the Bitfi wallet is unhackable," Bitfi says.


Autonomous Vehicles: A Pandora's Box Of Safety Issues?

#artificialintelligence

Greek Mythology is primarily associated with ancient literature, arts, culture, and education; but many of the stories have great contemporary significance. Most have heard the expression "be careful, you may be opening Pandora's box", but looking at the intricacies of the story itself, they are quite reflective of what we see going in the autonomous vehicles space in the automotive industry. Pandora's box is an origin myth -- used to attempt to explain the beginning of time itself; considerably like new ventures, new technologies, and new ideas around the autonomous ecosystem. It is also a story of curiosity; Pandora's curiosity caused her open the box even though she was specifically told not to, unleashing negativity into the world -- what does this mean about the curious concept of self-driving cars? For autonomous cars to become truly safe, the entire automotive ecosystem must be sure of the reliability and integrity of their contribution to the system, through building and maintaining these vehicles.Getty Today, Pandora's box represents a source of troubles.