$25 gadget lets hackers seize control of a car –


After journalist Michael Hastings‘s death, there were rumours that his car had been hacked. Now two researchers say they can do it for real

Mishap or cyber-mischief? (Image: Scott Lane/Loudlabs News)

IN THE early hours of 18 June, a Mercedes coupé travelling at extremely high speed along a Los Angeles street smashed into a palm tree. It exploded into flames, killing the driver; the impact ejected the engine 50 metres clear of the car. Was it an accident? Or was the car hacked, allowing it to be driven off the road by remote control?

The very idea might sound crazy – but it’s one that Richard Clarke, a former counterterrorism adviser to the US National Security Council, has raised after the driver was identified as Rolling Stone journalist Michael Hastings. Known for his revealing articles on the US military and its intelligence agencies, Hastings had emailed colleagues the day before he died to say that he was going “off the radar for a bit” to chase down a “big story”.

“What evidence is available publicly is consistent with a car cyberattack,” says Clarke in a Huffington Post interview. Intelligence agencies, he says, can remotely seize control of a car to make it accelerate wildly or brake suddenly, for instance.

Clarke cited research, carried out for the US National Academy of Sciences, showing that “connected cars” – equipped with built-in cellular technology used by dashboard apps and engine-monitoring software – can be hacked remotely. But proof that it could be done in practice has been lacking.

That looks set to change on 27 July, when Spanish engineers Javier Vázquez Vidal and Alberto Garcia Illera will give a demonstration at the Black Hat security conference in Las Vegas, Nevada. They have built a $25 device that lets them bypass security in a car’s electronic control unit.

The brains of a modern car, the ECU is a computer that controls engine power, transmission and braking. Mechanics can diagnose faults by plugging a laptop into it via standard wired connectors such as the CAN bus. Alternatively, remote diagnostics and software updates can take place over a cellular network, as happens with services such as General Motors’ OnStar and Mercedes-Benz‘s Mbrace.

Vázquez Vidal and Garcia Illera will show how their device – which they claim uses a $1 chip to break encryption – can read from and write data to the flash memory of commonly used ECUs, made by Bosch of Germany. In this way, they can get more horsepower out of a car, or tell it to burn less fuel. “And it would take no time to gain total control over a vehicle – deploying an airbag, activating the brakes, or immobilising a car at any moment,” says Vázquez Vidal.

How they have done this is unclear. “My best guess is that they have managed to put the ECU into an unencrypted test state, possibly by playing around with power-up sequences,” says Peter Highton, a senior engineer with Freescale Semiconductor in Aylesbury, UK, which makes ECU microchips for racing cars as well as ordinary vehicles.

For security, connected cars should use encryption, but Highton says carmakers are only just coming to terms with it. “Until as recently as five years ago, data on the CAN bus of most cars was unencrypted, and so could be intercepted and altered.”

Whatever the causes of Michael Hastings’s crash, the need to make cars secure against hacking will only become more acute. The next version of Vázquez Vidal and Garcia Illera’s device won’t even need plugging in to the target car. “I am already working on a wireless version,” Vázquez Vidal says.

via $25 gadget lets hackers seize control of a car – tech – 17 July 2013 – New Scientist.

Advertisements

About Old Boy

Love the past and the future but live in the present

Posted on July 20, 2013, in Crime, Government, Human rights and Liberties, politics, USA and tagged , , , , , , , . Bookmark the permalink. Leave a comment.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Paddy Healy's Blog

In defence of Education and the Public Services

shivashishspeaks

ALL U WANNA KNOW

Riding the High Country

Reviews and ramblings

Movies Tavern

Horror e Exploitation, B-Movies & Trash, Rarità e Capolavori. Insomma, ciò che mi piace.

CravenWild

The life and times of a filmmaker: fashion, beauty, books and life.

spearfruit

....................................it's my life

vinnieh

Movie reviews and anything else that comes to mind

renxkyoko's space

Just another WordPress.com site

TheMarckoguy

"TheMarckoguy" is the alternate name for Markus. Markus is a human who reviews stuff.

Tippity Tappin Away in the Coffee Shop

I write a lot, and I wanted a place to share my flash fiction stories.

/ EXPERIENCE OF THINKING / EXPÉRIENCE DE PENSÉE / ESPERIENZA DI PENSIERO /

The world is everything that is the case. --- Ludwig Wittgenstein.

Erin's Movie corner

Frankly my dear, I don't give a damn

Come Here To Me!

Dublin Life & Culture.

Ghost Dog

Notes From the Underground with Pictures

Karmic Reaction Blog

#Arts/#Culture/#History/#Music/#Politics/#Science/#Writing

Product of Half-glass.com

An average guy capable of discussing TV & film on a higher level but would rather do it from the couch.

Kate Bowyers Media Adventure

“Love recognizes no barriers. It jumps hurdles, leaps fences, penetrates walls to arrive at its destination full of hope.” — Maya Angelou

The Motion Pictures

Lindsey D.'s ramblings on the moving image!

Reel Realities

A blog about my love for movies

Silent-ology

Uncovering the silent era

American History-8th Block

Made by Alyssa Carlton

31 Horror Movies in 31 Days

Celebrating History and Horror Films

Gizmo February

The Literary Explorations of a Bulldog

Year of Horror

One full year of clammy hands and sweaty butt cheeks

Danyeti

Design as understood by Danielle

Bradley's Basement

Tim Bradley's Blog

Champagne for Lunch

"Only on special occasions."

Save Celluloid

Information on Film Preservation and Restoration

Media coursework

By George Milton

Ciryan

Crazy,Batty

Nitrate Diva

Old Movies. Fresh Takes.

Kid Slender

Let all the children boogie

Gizmo December

The Literary Explorations of a Bulldog

tireakngroupal2media.wordpress.com/

Life is Light,Camera,Action

Gizmo May

The Literary Explorations of a Bulldog

Sly Wit

Random musings on all things cultural/Cultural

The Wonderful World of Cinema

This blog is all about cinema, movies and stars of every decades. It's wonderful!

A Simple Dose of Reality

a girl and her words

%d bloggers like this: