Tesla patches Model S after researchers hack car's software

Not even automakers like Tesla are immune to hacking




Two researchers - Kevin Mahaffey, CTO of security startup Lookout, and Marc Rogers, a security researcher at CloudFlare - said they were able to take control of a Tesla Model S by hacking into the car's entertainment system. When the car was cruising at less than five miles per hour or idling, the researchers were able to apply the emergency hand brake, bringing the car to an immediate stop.

Physical access to the car was necessary

Researchers emphasized that physical access to the car was needed to carry out the hack. For their research, he and Rogers plugged a laptop into a Model S ethernet port and exploited the vulnerabilities until they tapped into the entertainment software.

Back in the old days one would simply cut few wires or brake cables.

Patch applied Over-the-Air

It’s impossible to prevent an attack from hitting a car’s computer system, Mahaffey said.
“The question is how do you respond quickly with a patch and how you do you make your car resilient,” he said.
A Tesla spokeswoman said the company has developed a fix, which was already sent out to all Model S cars through an over-the-air software update. These updates can be downloaded by the driver via Wi-Fi or cellular connection.

News of the Tesla hack comes just weeks after a report that cybersecurity researchers were able to take remote control of a Jeep Cherokee, leading Fiat Chrysler Automobiles to recall 1.4 million vehicles.

Originally referred from articles:
http://www.pcworld.com/article/2962952/security/tesla-patches-model-s-after-researchers-hack-cars-software.html
http://techcrunch.com/2015/08/06/researchers-hack-a-model-s-tesla-sends-out-over-the-air-fix/

Comments

Post a Comment

Popular posts from this blog

Stubbing and Mocking Static Methods with PHPUnit

Image
PHPUnit has ability to stub and mock static methods. Consider the class Foo : <?php class Foo { public static function doSomething() { return static::helper(); } public static function helper() { return 'foo'; } } ?> To test the static helper() function with PHPUnit, you can write you test like that: <?php class FooTest extends PHPUnit_Framework_TestCase { public function testDoSomething() { $class = $this->getMockClass( 'Foo', /* name of class to mock */ array('helper') /* list of methods to mock */ ); $class::staticExpects($this->any()) ->method('helper') ->will($this->returnValue('bar')); $this->assertEquals( 'bar', $class::doSomething() ); } } ?> The new staticExpects() method works similar to the non-static expects
Read more

Enable HTTP/2 Support in AWS ELB

Image
This thread  was started more than a year ago, asking for when Amazon Web Services will add support for HTTP/2  into their ELB. In addition to that, people are also asking, how to configure ELB to support multiple SSL certificates. AWS support team has been reluctant on giving out any specific details on when both of these features will be available, citing: I've verified that the ELB team is aware of the interest in ELB supporting HTTP/2. Please keep an eye on What's New from Amazon Web Services: http://aws.amazon.com/new/ for any updates. What is HTTP/2? HTTP/2 is a replacement for how HTTP is expressed “on the wire.” It is not a ground-up rewrite of the protocol; HTTP methods, status codes and semantics are the same, and it should be possible to use the same APIs as HTTP/1.x (possibly with some small additions) to represent the protocol. HTTP/2 protocol is supported by major modern browsers including IE11, Edge 13, Firefox 47, Chrome 52, Safari 9.1, Opera 38, i
Read more

How To Attach Your EBS volume to multiple EC2 instances

Image
Are you exhausted from the complexities and the extra cost associated with the EFS? What if you simply need to share the EBS volume between two EC2 instances? Say no more - Amazon Web Services has an answer for you! Starting today, customers running Linux on Amazon Elastic Compute Cloud (EC2) can take advantage of new support for  attaching  Provisioned IOPS ( io1 ) EBS volumes to  multiple EC2 instances , at  no extra charge ! Multi-Attach option in EBS According to AWS, the Multi-Attach capability makes it easier to achieve higher availability for applications that provide write-ordering to maintain storage consistency. Consider the following scenario: you are running a web application behind the load balancer, and the application expects static assets, such as WordPress media uploads, theme or configuration files, shared between the instances. Instead of using EFS, you could create new PIOPS EBS volume with the Multi-Attach option, mount the volume on each s
Read more