โJul-27-2015 09:08 AM
โJul-27-2015 11:34 AM
sch911 wrote:AndyW wrote:whjco wrote:
The "hack" was performed under a set of circumstances where the hackers had direct physical access to the vehicle and would be virtually impossible to duplicate over the internet. A security update to the UConnect software is available via download or dealer installation to plug any discovered security vulnerability.
That is false - the most recent demonstration was entirely via the internet, and they even demonstrated that they could scan for and find other vehicles susceptible to the same bug via the cellular network.
It's an interesting read about something that is likely to get worse before it gets better:
http://www.wired.com/2015/07/hackers-remotely-kill-jeep-highway/
Yes they did in fact spend several days with the vehicle physically enabling the exploit, before connecting to it remotely
โJul-27-2015 11:31 AM
โJul-27-2015 11:24 AM
AndyW wrote:whjco wrote:
The "hack" was performed under a set of circumstances where the hackers had direct physical access to the vehicle and would be virtually impossible to duplicate over the internet. A security update to the UConnect software is available via download or dealer installation to plug any discovered security vulnerability.
That is false - the most recent demonstration was entirely via the internet, and they even demonstrated that they could scan for and find other vehicles susceptible to the same bug via the cellular network.
It's an interesting read about something that is likely to get worse before it gets better:
http://www.wired.com/2015/07/hackers-remotely-kill-jeep-highway/
โJul-27-2015 11:05 AM
whjco wrote:
The "hack" was performed under a set of circumstances where the hackers had direct physical access to the vehicle and would be virtually impossible to duplicate over the internet. A security update to the UConnect software is available via download or dealer installation to plug any discovered security vulnerability.
โJul-27-2015 10:46 AM
โJul-27-2015 10:44 AM
AndyW wrote:
... This won't fix the underlying problem of critical vehicle systems being connected to a cellular communication package (a profoundly stupid idea on the part of automakers, IMO), but welcome to the future I guess.
It's going to take a few high profile incidents before manufacturers really address this problem, unfortunately. After all, the security researchers in question did this public demonstration for a journalist precisely because Chrysler wasn't listening to them when they said the system was insecure.
โJul-27-2015 10:02 AM
โJul-27-2015 09:34 AM