Cars Really Are Increasingly Vulnerable To Cyberthreats

The FBI has issued a warning that modern cars are "increasingly vulnerable" to hacking after researchers proved it is possible to disable brakes and manipulate steering remotely.

An official public service announcement released by the FBI recently warned that it is possible for hackers to “gain significant control over vehicle functions remotely by exploiting wireless communications vulnerabilities”. The announcement explained that new technology designed to enhance safety and improve fuel economy has led to increased connectivity, which has made vehicles more vulnerable to attacks.

“Modern motor vehicles often include new connected vehicle technologies that aim to provide benefits such as added safety features, improved fuel economy, and greater overall convenience," it read. “With this increased connectivity, it is important that consumers and manufacturers maintain awareness of potential cyber security threats."

Over the past year researchers have proven it is possible to develop methods of targeting the active cellular wireless and WiFi hotspots in vehicles.

They found that while attacks over WiFi were limited to a distance less than 100 feet from the car, they were able to achieve engine shutdown, disable brakes and manipulate steering when cellular connection was made.
The PSA provided advice on how to avoid remote exploits on vehicles. It stated that it is important to ensure vehicle software is up to date and to be careful when making modifications to vehicle software.

It also warned that drivers should be aware of who has physical access to the vehicle. “It is important that consumers and manufacturers are aware of the possible threats and how an attacker may seek to remotely exploit vulnerabilities in the future,” the announcement added.

Last year Fiat Chrysler recalled 1.4 million vehicles in the US after security researchers remotely controlled a Jeep. In January 2015 BMW AG said it had fixed a security flaw that could have allowed 2.2 million of vehicle doors to be remotely opened by hackers.

People who suspect their car has been hacked are advised to get in contact with the vehicle manufacturer or authorised dealer.

Indpendent: http://ind.pn/1VuZcRa

« Ex-CIA Chief: ‘If we don’t handle China well, it will be catastrophic’
Apple's Questionable Victory Over the FBI »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Eversheds Sutherland

Eversheds Sutherland

Eversheds Sutherland is a global multinational law practice offering a full range of commercial and IT law services including Privacy, Data Protection and Cyersecurity.

Sonatype

Sonatype

Sonatype protects the world's enterprise software from security, compliance, licensing risks, while reducing application development and deployment time.

maCERT

maCERT

maCERT is the national Computer Emergency Response Team for Morocco.

sayTEC

sayTEC

sayTEC's mission is to develop and deliver next-generation products and services in encrypted data and voice transmission.

Office of the National Security Council (UVNS) - Croatia

Office of the National Security Council (UVNS) - Croatia

UVNS coordinates, harmonizes the adoption and controls the implementation of information security measures and standards in the Republic of Croatia.

Cybersecurity Innovation Hub

Cybersecurity Innovation Hub

The main objective of the Hub is to bring cybersecurity and other advanced technologies closer to companies and as a result help to increase their performance as Industry 4.0.

Cyberhaven

Cyberhaven

Cyberhaven provides rapid enablement for GDPR and CCPA compliance, streamlined data security and modern risk management.

CloudOak

CloudOak

CloudOak is a cloud channel provider for hybrid cloud Backup as a Service (BaaS), Disaster Recovery as a Service (DRaaS) and Archiving to Small to Medium Business (SMB).

First Point Group (FPG)

First Point Group (FPG)

First Point Group provide a global technological recruitment service worldwide. Within that we have a specialist team of Cyber Security recruiters.

ContraForce

ContraForce

ContraForce is a threat detection and response software providing complete visibility across cloud, network, endpoints, user, and email with the ability to target and block threats in real-time.

Cognyte

Cognyte

Cognyte is a global leader in investigative analytics software that empowers a variety of government and other organizations with Actionable Intelligence for a Safer World.

SEMNet

SEMNet

SEMNet is an IT solutions provider and an infrastructure and security consulting firm.

Brace168

Brace168

Specialising in Cyber Security incident identification and response, Brace168 is uniquely positioned to provide a vast experience in managed security services to meet the needs of all business types.

Tech Vedika

Tech Vedika

Tech Vedika has access to technical guidance, training and resources from AWS to successfully undertake solution architecture, application development, application migration, and managed services.

Identity Digital

Identity Digital

Identity Digital simplifies and connects a fragmented online world with domain names and related technologies that allow people and businesses to build, market and own their digital identities.

AppSentinels

AppSentinels

Appsentinels are a group of security and technology experts with a mission to fix gaps in application security.