"Automotive cybercrime is a burgeoning business. Some 6,000 cars and vans were stolen using this keyless entry hack last year in London alone - that's 42% of all vehicle thefts, according to the city's Metropolitan Police.
As cars become increasingly hi-tech, with Internet connectivity and automated parking, braking and obstacle detection, they become more vulnerable to cyber-attack - whether by people looking to steal the vehicle, harm an individual, or carry out activism.
‘Anything connected to the Internet can be hacked - including cars’
A recent Jeep Cherokee cyber-attack saw hackers remotely take control of a car's steering and brakes while it was on a motorway. That put cybersecurity at the top of carmakers' agendas. It was a controlled experiment carried out by two "white hat" hackers, and not a malicious attack. However, the potential risks were clear to see, and Jeep manufacturer Fiat Chrysler recalled 1.4 million vehicles to fix the security flaw.
As more and more automobiles come online - with Japanese electronics giant Hitachi predicting that 90% of all vehicles will be connected to the Internet by 2020 - it's critical to consider some of the vulnerabilities already at play."
Key Cloning:
"For less than 20 pounds ($31), would-be criminals can buy a device online that allows them to drive off with a prize worth tens of thousands of dollars.
Many models are at risk, including BMW, Mercedes, Audi, Land Rover and Saab. In theory their modern keys make the cars very secure; the car can't be started unless it receives a unique signal from the fob. However, the unregulated sale of key-programming equipment means that criminals can easily create copies."
Infotainment System Hack:
"The Jeep hack involved targeting the Internet-connected entertainment and navigation system via a mobile phone network.
The problem lies in "truly stupid wide-open doors" in the car's on-board 'telematics' computer (used for navigation and diagnostics), according to Jens Hinrichsen, general manager of Interface Products at NXP, which makes microchips for connected vehicles. Internet-connected add-ons now make cars much more vulnerable to cyber-attack from afar, he says.
Experts say cars need better security architecture to keep entertainment systems, telematics and critical functions separated by firewalls and with encrypted communication between them.
'Typically cars' networks are like a house where you can walk freely from one room to another. Carmakers need to build in security so that there's a lock on each room and special locks for special rooms. There might even be a safe in the bedroom with the most precious stuff inside,' Hinrichsen adds."
Full Story:
Car thieves don't need to smash your windows anymore
As cars become increasingly hi-tech, with Internet connectivity and automated parking, braking and obstacle detection, they become more vulnerable to cyber-attack - whether by people looking to steal the vehicle, harm an individual, or carry out activism.
‘Anything connected to the Internet can be hacked - including cars’
A recent Jeep Cherokee cyber-attack saw hackers remotely take control of a car's steering and brakes while it was on a motorway. That put cybersecurity at the top of carmakers' agendas. It was a controlled experiment carried out by two "white hat" hackers, and not a malicious attack. However, the potential risks were clear to see, and Jeep manufacturer Fiat Chrysler recalled 1.4 million vehicles to fix the security flaw.
As more and more automobiles come online - with Japanese electronics giant Hitachi predicting that 90% of all vehicles will be connected to the Internet by 2020 - it's critical to consider some of the vulnerabilities already at play."
Key Cloning:
"For less than 20 pounds ($31), would-be criminals can buy a device online that allows them to drive off with a prize worth tens of thousands of dollars.
Many models are at risk, including BMW, Mercedes, Audi, Land Rover and Saab. In theory their modern keys make the cars very secure; the car can't be started unless it receives a unique signal from the fob. However, the unregulated sale of key-programming equipment means that criminals can easily create copies."
Infotainment System Hack:
"The Jeep hack involved targeting the Internet-connected entertainment and navigation system via a mobile phone network.
The problem lies in "truly stupid wide-open doors" in the car's on-board 'telematics' computer (used for navigation and diagnostics), according to Jens Hinrichsen, general manager of Interface Products at NXP, which makes microchips for connected vehicles. Internet-connected add-ons now make cars much more vulnerable to cyber-attack from afar, he says.
Experts say cars need better security architecture to keep entertainment systems, telematics and critical functions separated by firewalls and with encrypted communication between them.
'Typically cars' networks are like a house where you can walk freely from one room to another. Carmakers need to build in security so that there's a lock on each room and special locks for special rooms. There might even be a safe in the bedroom with the most precious stuff inside,' Hinrichsen adds."
Full Story:
Car thieves don't need to smash your windows anymore
