Vault 7 Release of Possible Car Hacks Is Nothing New

March 12, 2017

Back in 2009,  it was known by GMC that their vehicles could be hacked through OnStar to take over steering, brakes, transmission, etc…

The group from University of California, San Diego and University of Washington demonstrated that they could hack the 2009 Chevy Impala.  They showed the code to GM only, this was never publicized.

In 2015, two hackers Charlie Miller and Chris Valesek in St Louis showed a willing subject who is a reporter from wired.com that his Jeep Cherokee could give any attacker wireless control over their vehicle. Software that lets hackers send commands through the vehicles entertainment systems to its dashboard functions, steering, brakes, etc… all from a laptop that could be thousands of miles away.

This revelation sparked Senators Ed Markey and Richard Blumenthal in July 2015 to introduce an automotive security bill.  This bill would have three major sections in which it would require NHTSA and FTC to set security standards.  This includes isolating critical software systems software from the rest of the vehicles internal network, penetration testing by security analysists and the addition of onboard systems to detect and respond to malicious commands on the car’s network.  Forcing auto dealers to display stickers to rank their security and privacy protections. Require manufacturers to tell people how they collect data from vehicles they sell, letting buyers opt out of the data collection and restricting how the information can be used for marketing.

The original hackers Miller and Valesek built an anti-hacking device for cars that only cost them $150 in parts. Hoping they could help the public to protect themselves by putting the cars computers in “limp mode.”

Automotive Security Bill http://www.markey.senate.gov/imo/media/doc/SPY%20Car%20legislation.pdf

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s