As we said a few months ago, the hacker threat is real, our cars They need an antivirus. Not me, they say many experts in the field, US senators who have already alerted the manufacturers of the risks (Wired) and the facts established by two “hackers”, Charlie Miller and Chris Valasek, that they have shown that without physical access to a Jeep Cherokee can “glare” in full swing, trollear its driver, or even lead to situations with the risk of death [1999004 accident]. It is best that Andy Greenberg Wired (worth really worth reading his article) offered as a guinea pig to experience their tricks.
They began hacking a Prius and Escape for its port [1.99901 million] OBD . But they are now able to strike down a Jeep Cherokee up without touching, thousands of kilometers away.
Charlie and Chris had already achieved many successes in 2013, exploiting vulnerabilities in technology of some vehicles such as the Toyota Prius and the Ford Escape. But this time, despite the commotion caused by his discoveries, manufacturers do not took it too seriously, as they could only attack his car holding a physical connection to the car, accessing the diagnostic port OBD .
But now it has been interesting. More and more cars that are permanently connected to the Internet. And Charlie and Chris have discovered that they can be turned upside down to a Jeep Cherokee knowing only the IP address of your connection while eating pizza in a basement thousands of kilometers, listen black metal and write code green lines on black background, looking at the screen with glasses resting on the tip of the nose. Sorry, but you had to bring out some cliché of hackers, and made do, throw them all together.
See the complete gallery motor
The internet connection entertainment equipment allowed hackers to access further manipulate the car unit and attack critical systems such as brakes, throttle and steering.
The situation is worrying. As I mentioned, we advances Valasek Miller and allow them to access a Jeep Cherokee equipped with UConnect simply using an Internet connection. They have exploited the vulnerability would allow remote access to the entertainment system and car connectivity, rewrite your code base, and make those changes allow them access even further, to the control unit of the vehicle itself. Accessing the latter, the troll hack to change songs or put an image on screen, would have become truly dangerous actions, such as disconnecting the motor in full swing, lock brakes, or prevent them from acting even they have managed to turn the wheel, but curiously only when the car is reversing. All these attacks would have experienced the editor of Wired who volunteered as a guinea pig to test it.
Luckily Miller and Valasek not going to use their expertise to carry out evil schemes . They explained in more detail in the next Black Hat conference in Las Vegas. Before these details were public, and they offered all their knowledge to Chrysler to remedy this problem could affect hundreds of thousands of cars. Chrysler was quick to solve, and offered a software update Uconnect without giving many details, and of course without acknowledging something that otherwise would cause great concern that two hackers had managed to manipulate while driving a Jeep without even physically touching. These researchers did not give details as critical as the modification of the software is recorded on a chip, the core system, to facilitate remote access to the switchboard of the car. And even encouraging other malicious hackers to exploit these vulnerabilities, they would still have months of work ahead to get through reverse engineering.
If anything, we are convinced about is that manufacturers still have much work ahead to properly protect their vehicles , especially in these times and must not only confront the thief in the neighborhood stealing cassettes in “the years of the drug”, but an overview, the Internet, where our car is permanently connected to a community that has access to 40% of the world population.
Lo said. Worth taking a moment and read this article in Wired Andy Greenberg.
In motor: The hacker threat is real, our cars need an antivirus
See the complete gallery motor