Hacking Vehicles for a Joy Ride

Hacking Vehicles for a Joy Ride

  • By Ginger Hill
  • Aug 05, 2015

Imagine parking your Saab 9-3 in front of your mother-in-law’s home and coming out a few hours later, only to find it gone…vanished…disappeared. This is exactly what happened to an interior designer in London. The police immediately asked to see the car’s key and weren’t surprised when they saw it was an electronic fob. Tech-savvy criminals are using key-cloning systems to gain entry to vehicles, and once in, the thief simply drives away.

Vehicle theft is big business, with approximately 6,000 cars and vans stolen using a keyless-entry hack last year in London alone and with a recent Jeep Cherokee cyberattack here in the states, hackers remotely took control of the vehicle’s steering and brakes while it was on a highway. Thank goodness it was a controlled experiment by two “white hat” hackers and not malicious, but the potential risks were clear, prompting Jeep and Fiat Chrysler to recall 1.4 million vehicles to fix the security flaw.

Japanese electronics company Hitachi predicts that by 2020, 90% of all vehicles will be connected to the Internet, so now is the time to consider some of the vulnerabilities:

Cloning electronic keys: For less than $31, people can purchase a device online that allows them to gain access to vehicle models such as BMW, Mercedes, Audi, Land Rover and Saab, plug the device into the diagnostic port and away they drive!

Solution: Add additional layers of security to the electronic key, making it more difficult to copy. Another less hi-tech recommendation: install a mechanical steering wheel lock.

Infotainment system hacking: Criminals target the Internet-connected entertainment and navigation system via a mobile phone network. Internet-connected add-ons for vehicles make them more vulnerable to cyberattacks because vehicle’s on-board telematics computers have wide-open doors, making it rather simple for tech-savvy criminals.

Solution: Firewalls and encrypted communication between entertainment systems, telematics and other critical functions is needed.

GPS spoofing: Signals that power smartphone mapping apps cam be spoofed to deliver fake or altered maps to the car’s navigation system, sending the vehicle off course. In fact, security researchers at the University of Texas were able to change the course of an $80 million super-yacht, shifting it to a potentially dangerous path, and the captain never even knew!

Solution: Human drivers can refer to paper maps, but driverless vehicles may just be out of luck since they rely heavily on satnav systems.

Image: Annopk / Shutterstock.com

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • Security Industry Association Announces the 2026 Security Megatrends

    The Security Industry Association (SIA) has identified and forecasted the 2026 Security Megatrends, which form the basis of SIA’s signature annual Security Megatrends report defining the top 10 factors influencing both near- and long-term change in the global security industry. Read Now

  • The Future of Access Control: Cloud-Based Solutions for Safer Workplaces

    Access controls have revolutionized the way we protect our people, assets and operations. Gone are the days of cumbersome keychains and the security liabilities they introduced, but it’s a mistake to think that their evolution has reached its peak. Read Now

  • A Look at AI

    Large language models (LLMs) have taken the world by storm. Within months of OpenAI launching its AI chatbot, ChatGPT, it amassed more than 100 million users, making it the fastest-growing consumer application in history. Read Now

  • First, Do No Harm: Responsibly Applying Artificial Intelligence

    It was 2022 when early LLMs (Large Language Models) brought the term “AI” into mainstream public consciousness and since then, we’ve seen security corporations and integrators attempt to develop their solutions and sales pitches around the biggest tech boom of the 21st century. However, not all “artificial intelligence” is equally suitable for security applications, and it’s essential for end users to remain vigilant in understanding how their solutions are utilizing AI. Read Now

  • Improve Incident Response With Intelligent Cloud Video Surveillance

    Video surveillance is a vital part of business security, helping institutions protect against everyday threats for increased employee, customer, and student safety. However, many outdated surveillance solutions lack the ability to offer immediate insights into critical incidents. This slows down investigations and limits how effectively teams can respond to situations, creating greater risks for the organization. Read Now

Most   Popular

New Products

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis.

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.

  • HD2055 Modular Barricade

    Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation.