Software Security

Archive for the 'Automotive Security' Category

 

New car communications could give hackers a free ride

Adding communications to cars and the transportation infrastructure provides cool new services (e.g., safe driving, faster transit times, etc.). From a security perspective, it also widens the threat landscape. Potentially, a bad actor sitting along the roadside with wireless access might be able to mess with the internal workings of your car or the traffic lights […]

Continue Reading...

Posted in Application Security, Automotive Security, Data Breach | No Comments »

 

Automotive security goes beyond the car

There’s been a fair share of attention paid to the security inside the connected car. There’s also been a significant uptick in new devices and apps that communicate with the vehicle from afar. These devices and apps use traditional means of communication (e.g., Bluetooth, Wi-Fi, etc.). They also make some very common software mistakes. For instance, […]

Continue Reading...

Posted in Automotive Security, Embedded Software Testing, Mobile Application Security | Comments Off on Automotive security goes beyond the car

 

Secure automotive software at any speed

The features that drive new car sales today are increasingly based on software. Drivers want their own music. They want to stay connected with their digital world. They want digital assistants to help park or even drive autonomously. While auto makers (i.e., the OEMs) have mostly mastered their physical world, with stable supply chains able […]

Continue Reading...

Posted in Automotive Security, Embedded Software Testing | Comments Off on Secure automotive software at any speed

 

Researchers hijack automotive mobile apps

Last month researchers demonstrated how a mobile app for Tesla–or any other connected car — can be hacked, enabling criminal hackers to locate, unlock, and potentially steal a Tesla vehicle. Researchers from Promon disclosed a vulnerability in the mobile app used by Telsa customers to access their vehicles. According to the researchers this attack is […]

Continue Reading...

Posted in Automotive Security, Mobile Application Security | Comments Off on Researchers hijack automotive mobile apps

 

Automotive cybersecurity: Industry taking a leadership role

In the year since the Jeep Cherokee remote access hack on a public freeway, how has the automotive industry responded? In a panel discussion at CodenomiCON 2016, industry representatives and security experts discusses what has already been done and what is still needed in the future. Moderating the discussion was Mike Ahmadi, Global Director of […]

Continue Reading...

Posted in Automotive Security, Security Conference or Event | Comments Off on Automotive cybersecurity: Industry taking a leadership role

 

Autonomous vehicles: Security implications of Uber’s self-driving cars

Last year, Uber set up an Advanced Technologies Center in Pittsburgh, Pennsylvania and began work on their latest project (no, not puppy delivery). Earlier this month they debuted their new self-driving cars, inviting “yinzers” to experience their first self-driven ride around Steel City. With a long list of really cool benefits (road trip, anyone?) there are […]

Continue Reading...

Posted in Automotive Security | Comments Off on Autonomous vehicles: Security implications of Uber’s self-driving cars

 

Tesla adopts code signing after remote access hack

After researchers discovered a way to hack into Tesla vehicles and reprogram their firmware, the auto manufacture pushed out not only a fix for that vulnerability, but a method for securing all the code running on the vehicle. The researchers from Tencent were able to remotely access a Tesla via its infotainment system. They faked […]

Continue Reading...

Posted in Automotive Security | Comments Off on Tesla adopts code signing after remote access hack

 

HERE opens automotive data services

A digital mapping service HERE collects real-time driving data from cars via its Open Location Platform. In advance of next week’s Paris Auto Show, HERE unveiled a series of initial tools, namely HERE Real-Time Traffic, HERE Hazard Warnings, HERE Road Signs and HERE On-Street Parking. Beginning in 2017, any customer inside or outside of the […]

Continue Reading...

Posted in Automotive Security, Internet of Things | Comments Off on HERE opens automotive data services

 

Helping the automotive industry prepare for regulations

The U.S. Government has proposed new regulation of Highly Automated Vehicles while the industry works toward self-regulation. On Monday, the Detroit News Website reported that the U.S. government will attempt regulate autonomous vehicles. Such regulation will be available in an official document titled “Federal Automated Vehicles Policy”. According to the article “[r]egulators say they will […]

Continue Reading...

Posted in Automotive Security, Security Standards and Compliance | Comments Off on Helping the automotive industry prepare for regulations

 

Researchers successfully hack a Tesla Model S remotely

While the Tesla Model S has been hacked before, this new attack can be carried out without any physical contact the car and from up to several miles away. On Monday, researchers from Keen Security Lab, lead by Chris Evans, announced “we have discovered multiple security vulnerabilities and successfully implemented remote, aka none physical contact, […]

Continue Reading...

Posted in Automotive Security | Comments Off on Researchers successfully hack a Tesla Model S remotely