Connected Cars Face A Growing Risk Of Cybercriminals

Sundar Pichai - Oct 01, 2019


Connected Cars Face A Growing Risk Of Cybercriminals

Since all functions of a connected car are controlled via a single mobile application, hackers can easily break into them then take control of the entire system.

The term “connected cars” is gaining more attention in recent times, which refers to cars that have their connection to the internet, usually via WLAN. With connectivity, the vehicle possesses the ability to share broadband with others, facilitating communication between cars, with the dealership, and with emergency services.

Widely, connected cars have been integrated with more advanced technologies like augmented reality (AR), computer vision, or virtual reality (VR) and so on. Such technologies have brought out a far better user experience, however, these additional facilities are posing a growing threat of cyberattacks to cars’ users all over the world. 

635688789443790043 16 Ford Esp Sync3 04 Mr
The term "connected cars" refers to cars with their connection to the internet

Previous Cases And Studies

In 2016, a vulnerability was found in the NissanConnect EV app, which led to some attackers manipulating a Nissan Leaf car. Following the event, the brand had to shut down several functionalities while it fixed the loopholes. Earlier this year, vehicle-sharing service Car2Go lost control of more than 70 vehicles as a result of fraudulent activity, as announced by the Financial Times. 

First Data Connected Car Commerce
A vulnerability was found in the NissanConnect EV app in 2016

“The number is growing,” says Dan Sahar, vice-president at Upstream Security. In the first half of 2019, there recorded 71 incidents of car cyberattacks, as compared with 73 for the whole of a year ago (according to data from Upstream). A study carried out by Georgia Institute of Technology reveals that connected cars will possibly create huge problems for the transportation infrastructure. Specifically, by taking control of merely 20% of total connected vehicles during rush hour, attackers will have the capability of freezing traffic in such a big city as Manhattan. 

Connected Cars
There recorded 71 incidents of car cyberattacks in the first half of 2019

Why Hackers Target Connected Cars

The reason behind the possibility of hacking into connected cars is that each car owns a single central system without offering a car key. Usually, connected cars provide a variety of features, including remote control over car ignition or sunroof, door lock, and more. Since all functions are activated via a single mobile application, hackers can utilize one component to easily intrude the other, thus taking control of the entire car. 

Apart from that, the increasing amount of user data available on the servers makes connected cars the “goldmine” for attackers. Data ranging from contacts, emails, as well as ID numbers to the tracking information of drivers has increased the incentives for malicious activities. 

Blog Safety First Connected Cars Need A Digital Pr
Each connected car owns a single central system without offering a car key

How Hackers Break Into A Connected Car

In term of methods, most of the time, hackers attempt to inject certain malicious code into the system of a car, which includes an operating system, firmware, or back-end infrastructure. Although such activity can be conducted remotely, major successful incidents happen within close proximity to the cars’ appliances.

Since connected cars are usually keyless, hackers are able to block users outside or inside the car, then execute an attack called "key fob hacking." Obviously, the car will reject any form of communication when it's under control of attackers. The final purpose of these malicious activities is usually to require a ransom. 

Car Wireless Internet Security Privacy Security Lo
Hackers never stop attempting to inject certain malicious code into the car's system

However, this type of attacks is considered difficult to keep track of. Once fraudsters succeed in injecting the malicious code, they can also intrude the controller area network (CAN), thus taking over sub-systems such as audio or antilock brakes. In the meantime, the automotive industry currently has a very complicated and diverse supply chain as most of the components derive from multiple third-party companies, consisting of software, communication protocols, and also applications. 

Comments

Sort by Newest | Popular

Next Story

Read more

Google Pixel 5 & Pixel 4a 5G Won't Come To India, Google Confirms

Mobile- Aug 04, 2020

Google Pixel 5 & Pixel 4a 5G Won't Come To India, Google Confirms

Google Pixel 5 and Pixel 4a 5G have been officially confirmed to not come to India and Singapore, you will still have the Pixel 4a in October.

Amazon Will Launch Internet Satellites Too, Competing Directly With Elon Musk's SpaceX

ICT News- Aug 04, 2020

Amazon Will Launch Internet Satellites Too, Competing Directly With Elon Musk's SpaceX

Under its Project Kuiper, Amazon has the plan to launch 3236 internet satellites after obtaining FCC approval, according to the FCC’s official site.

Apple Confirms iPhone 12 Won’t Be Launched By September

ICT News- Aug 06, 2020

Apple Confirms iPhone 12 Won’t Be Launched By September

In Apple’s recent earnings call, the company’s CFO Luca Maestri confirmed that iPhone 12 series would be launched a little bit later this year.

Foldable Samsung Galaxy Z Fold2 Announced With Massive Upgrades

Mobile- Aug 06, 2020

Foldable Samsung Galaxy Z Fold2 Announced With Massive Upgrades

The new-gen Samsung Galaxy Z Fold2 comes with massive upgrades in multiple departments like design, performance, display, and cameras.

[Update] Horrific Lebanon Explosions Killed At Least 78 People, Injured 4,000 More Within Minutes

Features- Aug 05, 2020

[Update] Horrific Lebanon Explosions Killed At Least 78 People, Injured 4,000 More Within Minutes

Yesterday, several explosions destroyed Beirut, smashing a large part of the city within minutes, resulting in tens of deaths and thousands of injured.

Apple Chief Of Marketing Phil Schiller Replaced By His Former Deputy

ICT News- Aug 05, 2020

Apple Chief Of Marketing Phil Schiller Replaced By His Former Deputy

On Tuesday, Apple announced the departure of its marketing chief Phil Schiller. The position of vice president of worldwide marketing is now held by Greg Joswiak