bmw patches flaw could let hackers unlock car doors
Last Updated : GMT 06:49:16
Arab Today, arab today
Arab Today, arab today
Last Updated : GMT 06:49:16
Arab Today, arab today

BMW patches flaw could let hackers unlock car doors

Arab Today, arab today

Arab Today, arab today BMW patches flaw could let hackers unlock car doors

BMW patches
Tehran - FNA

BMW released a patch for a flaw affecting 2.2 million vehicles, which could allow hackers to remotely unlock doors. German automaker BMW has just fixed a flaw in its ConnectedDrive software that could have allowed hackers to unlock a car using a mobile phone.
A few years ago BMW brushed aside reports of thefts that made use of its keyless entry systems, saying the problem - that thieves steal cars - was one that faced all car owners, regardless of whether they use keys or not. In that case, hackers were thought to have used devices that plug into the car's On-Board Diagnostic (ODB) port to program a new fob, ZDnet reported.
BMW appears to have taken a new flaw with a similar impact a little more seriously: last week it released a patch that's now rolling out to 2.2 million BMWs, Mini, and Rolls-Royce vehicles that use BMW's ConnectedDrive software.
The platform includes a SIM card to support connectivity for navigation and apps, as well as BMW's emergency call feature, roadside assistance, and wi-fi hotspot set-up. However, the feature can also be used to control the vehicle's locking system.
German automobile association ADAC, which reported the bug to BMW, said it had demonstrated on several models that hackers could use their mobile phone to open a car "within minutes" without leaving a trace.
BMW hasn't said exactly what the flaw is, but confirmed in a statement that ADAC had found a "a potential security gap when data is transmitted" and added that it had "increased the security" of ConnectedDrive by ensuring it uses the HTTPS protocol for encrypting web traffic in transit.
HTTPS has been traditionally used by banks to ensure users can connect to their websites over an encrypted channel. In recent years, however, it's become more widely deployed to prevent interception from hackers and government spies.
BMW said of the new update: "The online services of BMW Group ConnectedDrive communicate with this configuration via the HTTPS protocol (HyperText Transfer Protocol Secure) which had previously been used for the service BMW Internet and other functions.
"The BMW Group ConnectedDrive packages in the vehicle are thereby using encryption which in most cases is also being used by banks for online banking. On the one hand, data are encrypted with the HTTPS protocol, and on the other hand, the identity of the BMW Group server is checked by the vehicle before data are transmitted over the mobile phone network.
"In this way, the BMW Group has responded promptly and increased the security of BMW Group ConnectedDrive, because no cases have come to light yet in which data has been called up actively by unauthorized persons from outside or an attempt of this kind is made in the first place."
BMW's patch comes as hackers pay closer attention to the security of networked vehicles, in particular how well manufacturers are walling off core components that control steering and breaks from others used for communications. As noted by researchers Charlie Miller and Chris Valasek at BlackHat 2014, Bluetooth is a prime target because it's relatively easy to hack, while built-in cellular systems in vehicles are the 'holy grail' for hackers because they lend themselves to long-range attacks.

 

arabstoday
arabstoday

Name *

E-mail *

Comment Title*

Comment *

: Characters Left

Mandatory *

Terms of use

Publishing Terms: Not to offend the author, or to persons or sanctities or attacking religions or divine self. And stay away from sectarian and racial incitement and insults.

I agree with the Terms of Use

Security Code*

bmw patches flaw could let hackers unlock car doors bmw patches flaw could let hackers unlock car doors

 



Name *

E-mail *

Comment Title*

Comment *

: Characters Left

Mandatory *

Terms of use

Publishing Terms: Not to offend the author, or to persons or sanctities or attacking religions or divine self. And stay away from sectarian and racial incitement and insults.

I agree with the Terms of Use

Security Code*

bmw patches flaw could let hackers unlock car doors bmw patches flaw could let hackers unlock car doors

 



GMT 09:27 2017 Tuesday ,10 October

Macron takes EU reform push to Germany book fair

GMT 12:50 2017 Sunday ,03 December

Shiffrin bags first downhill win

GMT 10:33 2016 Friday ,08 April

Carter v Nonu as Racing eye Toulon's scalp

GMT 10:57 2017 Wednesday ,09 August

Iran's Rouhani names female VPs

GMT 11:21 2017 Monday ,20 February

Tunisian court tries suspects over violence charges

GMT 20:52 2017 Thursday ,30 November

Honeywell to maintain A380, B777 components for Emirates

GMT 02:36 2017 Thursday ,23 November

Casablanca’s president hails achievement

GMT 19:18 2017 Wednesday ,18 October

Investment sector attend Saudi Investment Initiative

GMT 07:08 2016 Tuesday ,28 June

Hodgson pays price for sorry England
Arab Today, arab today
 
 Arab Today Facebook,arab today facebook  Arab Today Twitter,arab today twitter Arab Today Rss,arab today rss  Arab Today Youtube,arab today youtube  Arab Today Youtube,arab today youtube

Maintained and developed by Arabs Today Group SAL.
All rights reserved to Arab Today Media Group 2021 ©

Maintained and developed by Arabs Today Group SAL.
All rights reserved to Arab Today Media Group 2021 ©

arabstoday arabstoday arabstoday arabstoday
arabstoday arabstoday arabstoday
arabstoday
بناية النخيل - رأس النبع _ خلف السفارة الفرنسية _بيروت - لبنان
arabstoday, Arabstoday, Arabstoday