Wednesday, 26 November 2014

Hacking a car is way too easy

Conspiracy theories about the cause of the car crash that killed investigative reporter Michael Hastings on June 18 started sprouting immediately after the news of his death broke. So far,  no conclusive evidence supports foul play, but on Monday, counterterrorism expert Richard Clarke made news when he told the Huffington Post that the circumstances of Hastings’ car chase were “consistent with a car cyber attack.”
While hastening to state that he was not saying he believed the crash was a purposeful attack, Clarke did observe, reported the Huffington Post, that “‘There is reason to believe that intelligence agencies for major powers’ — including the United States — know how to remotely seize control of a car.” Clarke served during both Bush presidencies and under Bill Clinton, so presumably he wasn’t speaking completely off the cuff. But just what is a “car cyber attack”?
Hacking a car is way too easy
The answer can be found in two alarming papers by researchers at the University of Washington and the University of California, San Diego, “Experimental Security Analysis of a Modern Vehicle,” and Comprehensive Experimental Analyses of Automotive Attack Surfaces.
Taken together, the papers make for scary reading. In the first the researchers demonstrate that it is a relatively trivial exercise to access the computer systems of a modern car and take control away from the driver. The second demonstrates that such mayhem can be achieved remotely, via a variety of methods. The inescapable conclusion: The modern car is a security disaster.

No comments:

Post a Comment