Hacking a Jeep

[Genx87]

I had heard somebody was also able to connect to fly by wire systems on some aircraft. Because the wireless system sits on the same network as the fly by wire. It is amazing how some of these companies do not think about securing their systems. This is a major issue if somebody wants to disrupt this country. Cause 400,000 stalled vehicles or worse in one attack.

 

[rh71]

God that Cherokee is fugging fugly... it deserves to crash its front end.

And yes, these two clowns are irresponsible immature attention whores. Haha let's obscure his vision and cut his power while on a highway, that will show everyone how cool and mighty we are.

 

[ultimatebob]

God that Cherokee is fugging fugly... it deserves to crash its front end.

And yes, these two clowns are irresponsible immature attention whores. Haha let's obscure his vision and cut his power while on a highway, that will show everyone how cool and mighty we are.

Yeah, doing that on a public highway was beyond stupid. That's what empty parking lots are for.

 

[ultimatebob]

They already said it is something that can be done at home by the end user, it does not require a service visit.

The said, how long until people are advised and can find someone who can do it "because I ain't so good with computers. Those steps there look like a foreign language."
I think it would behoove Chrysler to ship out disks to all registered owners, but fat chance that'll happen. Hopefully they can push the message out to all owners and stress the urgency of the situation.
The other issue is that we are still at a point where not everyone actually owns a computer.

Yeah... Don't forget that most people aren't as technically savvy as we are. The simple act of correctly getting the firmware update on a USB stick is probably beyond 25% of Jeep's customer base.

 

[Genx87]

Yeah... Don't forget that most people aren't as technically savvy as we are. The simple act of correctly getting the firmware update on a USB stick is probably beyond 25% of Jeep's customer base.

I'd say beyond 95% of their customer base. Most of them will have the dealership do it. If they do it at all.

 

[SOFTengCOMPelec]

Your example isn't a great one because it requires localized access to individual vehicles. Thus the maniac has to be local. With the new Chrysler issue the maniac doesn't have to be anywhere near the vehicle. I can think of more than a few groups world wide that would love to suddenly disable the breaks on ~500,000 vehicles. Its also going to be harder to notice failing breaks a head of time when they suddenly stop working while you are on the highway

I agree, my example was "limited" in scope. Increasing the range, makes it more worrying

The news now seems to be saying that they can be hacked, simply by sending a dab radio signal (i.e. a normal radio station signal), which e.g. Can totally disable the brakes, suddenly, with out warning, on a huge number of vehicles at the same time.

http://www.bbc.co.uk/news/technology-33622298

Car hack uses digital-radio broadcasts to seize control

Several car infotainment systems are vulnerable to a hack attack that could potentially put lives at risk, a leading security company has said.
NCC Group said the exploit could be used to seize control of a vehicle's brakes and other critical systems.
The Manchester-based company told the BBC it had found a way to carry out the attacks by sending data via digital audio broadcasting (DAB) radio signals.
It coincides with news of a similar flaw discovered by two US researchers.
Chris Valasek and Charlie Miller showed Wired magazine that they could take control of a Jeep Cherokee car by sending data to its internet-connected entertainment and navigation system via a mobile-phone network.
Chrysler has released a patch to address the problem.
However, NCC's work - which has been restricted to its labs - points to a wider problem.

This is a more worrying development.

The problem is, someone could be mad enough to publish the full hack details, on the internet. (Much of the info has already been released, as stated in the earlier article).

So it could be a bit like those fools who mess with aircraft/helicopters, by blinding them with powerful (readily available) green laser pens. Or the incidents when drones etc fly towards civilian aircraft, posing a danger.

But the hackers would be restricted to a limited practical range of a mile or few miles, if they bought/built a private transmitter. Otherwise they would have to somehow hack into the bigger radio networks, which would NOT be easy (hopefully!).

 

[Markbnj]

Massive recall to update the software.

http://www.bbc.com/news/technology-33650491

 

[SOFTengCOMPelec]

Massive recall to update the software.

http://www.bbc.com/news/technology-33650491

Someone needs to bring out anti-virus (checking) software with built in firewall for cars!

(Joke, hopefully).

 

[Hugo Drax]

Anti-lock breaks are computer controlled. A tone ring on the end of the axle that sends a signal through the computer to the ABS system. Cars that can automatically park themselves already have most of the engine functions including throttle, breaks and steering controlled by the computer.

They will absolutely need to deal with this before self driving cars start hitting the markets.

They will deal with just like they are dealing with internet security. (ie OPM hacked,target,home depot,etc..)

So what will happen is in the future there will be people getting killed every so often due to someone hacking a car or a virus spreading etc..

 

[ImpulsE69]

This is why the mentality that everything has to be connected is bad. No amount of 'security' is foolproof. If someone wants in, eventually they will.

 

[Platypus]

Massive recall to update the software.

http://www.bbc.com/news/technology-33650491

I really don't like how they made a cheap jab to try to blame the researchers... releasing something designed and built like this is criminally negligent on their part and they know it. Can't say I'm surprised though...