$25 gadget lets hackers seize control of a car –


After journalist Michael Hastings‘s death, there were rumours that his car had been hacked. Now two researchers say they can do it for real

Mishap or cyber-mischief? (Image: Scott Lane/Loudlabs News)

IN THE early hours of 18 June, a Mercedes coupé travelling at extremely high speed along a Los Angeles street smashed into a palm tree. It exploded into flames, killing the driver; the impact ejected the engine 50 metres clear of the car. Was it an accident? Or was the car hacked, allowing it to be driven off the road by remote control?

The very idea might sound crazy – but it’s one that Richard Clarke, a former counterterrorism adviser to the US National Security Council, has raised after the driver was identified as Rolling Stone journalist Michael Hastings. Known for his revealing articles on the US military and its intelligence agencies, Hastings had emailed colleagues the day before he died to say that he was going “off the radar for a bit” to chase down a “big story”.

“What evidence is available publicly is consistent with a car cyberattack,” says Clarke in a Huffington Post interview. Intelligence agencies, he says, can remotely seize control of a car to make it accelerate wildly or brake suddenly, for instance.

Clarke cited research, carried out for the US National Academy of Sciences, showing that “connected cars” – equipped with built-in cellular technology used by dashboard apps and engine-monitoring software – can be hacked remotely. But proof that it could be done in practice has been lacking.

That looks set to change on 27 July, when Spanish engineers Javier Vázquez Vidal and Alberto Garcia Illera will give a demonstration at the Black Hat security conference in Las Vegas, Nevada. They have built a $25 device that lets them bypass security in a car’s electronic control unit.

The brains of a modern car, the ECU is a computer that controls engine power, transmission and braking. Mechanics can diagnose faults by plugging a laptop into it via standard wired connectors such as the CAN bus. Alternatively, remote diagnostics and software updates can take place over a cellular network, as happens with services such as General Motors’ OnStar and Mercedes-Benz‘s Mbrace.

Vázquez Vidal and Garcia Illera will show how their device – which they claim uses a $1 chip to break encryption – can read from and write data to the flash memory of commonly used ECUs, made by Bosch of Germany. In this way, they can get more horsepower out of a car, or tell it to burn less fuel. “And it would take no time to gain total control over a vehicle – deploying an airbag, activating the brakes, or immobilising a car at any moment,” says Vázquez Vidal.

How they have done this is unclear. “My best guess is that they have managed to put the ECU into an unencrypted test state, possibly by playing around with power-up sequences,” says Peter Highton, a senior engineer with Freescale Semiconductor in Aylesbury, UK, which makes ECU microchips for racing cars as well as ordinary vehicles.

For security, connected cars should use encryption, but Highton says carmakers are only just coming to terms with it. “Until as recently as five years ago, data on the CAN bus of most cars was unencrypted, and so could be intercepted and altered.”

Whatever the causes of Michael Hastings’s crash, the need to make cars secure against hacking will only become more acute. The next version of Vázquez Vidal and Garcia Illera’s device won’t even need plugging in to the target car. “I am already working on a wireless version,” Vázquez Vidal says.

via $25 gadget lets hackers seize control of a car – tech – 17 July 2013 – New Scientist.

Advertisements

About Old Boy

Love the past and the future but live in the present

Posted on July 20, 2013, in Crime, Government, Human rights and Liberties, politics, USA and tagged , , , , , , , . Bookmark the permalink. Leave a comment.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

sorryless

great vengeance and furious anger served piping hot!

let me photograph you softly

photographs on the street

| SCRIPTEUM |

Blog de escritura

Sally.CS

"Érase una vez una gitana, que escribía historias de amor"

territori del '900

identità luoghi scritture del '900 toscano

fountain hues

the journey of a poetry

Flavorful Delights

A collection of recipes, food inspirations, and finding joy in cooking

Cafė com filosofia

A verdade existe!

From 1 Blogger 2 Another

Sharing Great Blog Posts

A Better Man

Make a Start

johncoyote

Poetry, story and real life.

passaporte no bolso

blogue de viagens

Art Bacchant

drunk on the arts

optimisticlifeat30

The essence of Poetry

Fun Freedom Fables

Stay happy, think positive & live life to the fullest

The Rolling Paper Company

Rolling papers for customized cigarettes has developed from rolling tobacco and weed in dried leaves of trees to rolling them in a paper.

andycritiques

Film & Television Reviews From The Perspective Of A Film & Televison Lover

Truth Troubles

Why people hate the truths of the world.

The Culture Tome

An Online Journal For Appreciating The Past

The Comic Vault

Unlock your inner geek and step inside!

sandsoftime10

A peep into Megha's mind

Education Motivation Inspiration

Warm welcome! This is more than an exploration. Discovery of new ideas and new ways of being.

EXPLORING FOR KNOWLEDGE.

REASONING IS THE FOUNDATION.

Perfect-Style-Knower

Visual Perception- Hot Edgy Erotica Site

THE BOOKS THAT TIME FORGOT.

Reviewing books that time has passed by.

Peach6972's Re🤗Blog🥀

lonly n depress😢🐘make my day 🌷⚘

outofwak (artworldwar)

we are all empty circles, through which the creative power of the universe passes through, whether we like it or not..

Why'd Multiple Sclerosis pick me

My Life with Multiple SCLEROSIS

Windows on Worlds

Because you speak to me in words and I look at you with feelings

Crackdown Review

A place to search something like movie, anime, novel, manga, etc. reviews

Dave's Corner of the Universe

Where strange fact and stranger fiction collide

Trust and Believe in the Unseen

Live with Light of Faith

#FILMose

Crítica para quem gosta de Cinema.

Gaston Bessette, Photographie

La passion de la photo-Photographs as a passion

hands in the garden

short poems for short attention spans

Empowered

Everyday

Iain Kelly

Fiction Writing

The Müscleheaded Blog

"Nothing Exceeds Like Superfluous Jejunity "

After the Final Curtain

"People buy tickets to theatres, not movies." -- Marcus Loew

cracked rear viewer

Fresh takes on retro pop culture

indiescifi451.wordpress.com/

science fiction autopsy. movie reviews, books, quotes, posters. no trash. no bullshit.

%d bloggers like this: