Automakers need to improve how they secure their cars earlier in the production cycle because it is far easier to fix the issues while the models are still in the lab, than it is to issue a recall or release a patch. We don't want it broken forever," Valasek agrees.Īutomotive security research is important, especially as automakers cram in more and more computers and networked components in the vehicles. "This is the first time that there's been a physical recall of a mass-produced product because of a software security issue," Miller says. That's a lot of things to potentially mess around with.įiat Chrysler recalled 1.4 million Jeep Cherokees and issued a patch closing that vulnerability. The ECUs handle adaptive cruise control, electronic brakes, parking assist and control of the steering column. The CAN bus carries information between the vehicle's various electronic control units (ECU) to the central controller.
Miller and Valasek were then able to send commands to the engine and wheels through the car's internal Controller Area Network (CAN). The flaw in Uconnect lets anyone with the car's IP address to gain access from anywhere in the country. "We sent him on the highway.and then we killed his engine essentially," Miller says in the video. In this Hacker History video, renowned hackers Charlie Miller and Chris Valasek describe how they compromised the Jeep Cherokee via a vulnerability in Uconnect, the vehicle's Internet-connected entertainment system. Unlike the last time his car started acting up, the hackers weren't cackling in the backseat, but 10 miles away.
The vents started blasting cold air at the maximum setting, the radio was blaring Skee-lo at full volume, and the windshield wipers turned on. It was the summer of 2015, and Wired reporter Andy Greenberg was driving a Jeep Cherokee in downtown St.
0 kommentar(er)
