Posted on 01/21/2015 4:41:43 PM PST by nascarnation
It was a mere two months ago that Israeli cyber-security researchers hacked into a device that plugs into the diagnostic port of a car and determined they could remotely control the vehicle from anywhere in the world. At the time, the simulated attack seemed like the automotive version of a canary in a coal mine. If researchers could breach this one device, perhaps other aftermarket products that plug into diagnostic ports were also vulnerable?
In short order, another cyber-security firm now reports finding serious flaws in a device used by more than 2 million motorists.
Researchers at Florida-based Digital Bond Labs say they have uncovered major problems in a device that Progressive Insurance uses to measure the driving habits of participating customers. By reverse-engineering the dongle, they gained access to a network that allows control of critical vehicle functions, like steering, braking and throttle inputs.
"What we found with this device was that it was designed with no security features," Dale Peterson, founder and CEO of Digital Bond Labs, tells Autoblog. "It wasn't even based on basic security coding practices. ... It's a house that has no doors, no windows and no fences, with valuables inside."
Peterson emphasized this was not a case of researchers exploiting a weakness in the dongle's security; it was simply that no security existed.
The phone connects to the OBDII dongle using Bluetooth. The "Torque" program converts my car's ECU data to graphic displays such as Current Speed, Average MPG, Instantaneous MPG, Acceleration, Temperatures, etc.
To get onto The Nut-job Conspiracy Theory Ping List you must threaten to report me to the Mods if I don't add you to the list...
so glad I don’t use that company
How dumb can they be?
Ditto, but with my Daddy's 1965 Plymouth Fury II nine-passenger station wagon with a rear-facing back seat, great for parking backwards at the drive-in. :-)
I’m thinking of that guy whose car accelerated and the engine was found outside of the car...
guy was investigating a story unfavorable to certain people.
all y’all, ping to the thread, about technology possibly being able to do in the guy that I mentioned.
Thank you!
Flo's got no clothes!
Just say “no” to George Soros insurance!
I was skilled at parallel parking, but I don’t think I’ve had a need to parallel park for 20-30 years. I guess it would be easy, but who knows.
I wonder if I’m at risk with my 21 year old SUV.
I used to hear great things about USAA insurance from those who had it. I don't really remember hearing about them anywhere but by word-of-mouth before a few years ago (now they're advertising pretty heavily).
I looked into it quite a while back, but at that time, for some reason, I didn't qualify for it (I think I'd been out of the service too long, or some such), but they've since opened themselves up to a much greater range of people these days.
When I looked again, they were more expensive than my current insurance, so I didn't go with them, but I've still heard so much good about them, I may have to check into it again, as my insurance company can't even seem to get my bills/payments right.
I think you’re ok. This drive by wire business is relatively recent.
Probably. If you have the OBDII interface, you're at risk for some sort of hack. Now, the amount of things controlled by your computer is likely to be fewer than today's cars, but you still probably have a computer (my 1989 Mustang had one, and the 1994 Chevy Silverado 1-ton dually did, as well).
So they could affect engine speed/operation/shifting (if automatic). Unless you had ABS, or shift-by-wire 4-wheel-drive, that would likely be unaffected, but I know that GM's 4x4s in the early/mid 1990s had shift levers for their transfer cases in trucks/SUVs, but it's my understanding that they were fully fly-by wire and the shift lever was just there to make you think they were mechanically linked. My old boss had one go out, and he was surprised to learn that (as was I).
Actually I think the lizzard is an Aussie, not a Brit, LOL
Probably has venom if he's an Aussie. They got some nasty critters down there. ;~))
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.