Isn’t this topic seems like fiction ? 😛 Naah… it’s exactly what it is. 🙂
Cars or any other vehicles can be hacked by using just a $60 kit.
Well first let me make something clear that its not about all cars/vehicles. This type of attacks can be performed only on CAN enabled vehicles.
Wait.. CAN ?? What that hell is that ??
CAN (Controller Area Network) : It is a vehicle bus standard designed to allow micro-controllers and devices to communicate with each other in applications without a host computer.
So, for making things automated and connected in vehicles CAN is used for example user can open dashboard and get GPS directions, connect to apps and streams, can control car too.
So, what if an attacker hacks into the CAN enabled vehicles ?? That attacker can get access to the same things which user has and beside that, attacker can trick him by changing the data and also control the car.
CANcard: A new car hacking device was released by Eric Evenchick (embedded systems developer and former Tesla intern) in Blackhat Asia. This device costs only $60 which can be used by a python based toolkit developed by Eric. This toolkit is publicly available on github.
According to Eric:
I want to make this easy. Python developers can get the code in one line … and start working with it. It’s also built as a library rather than just a collection of scripts. The plan is to build more functionality out around it, and contribute that back into an open source tool.
Making diagnostics available for cheap means that we can not only audit the security of these systems, but also use them for their intended purpose: fixing cars.
he demonstrated many vulnerabilities like crack diagnostic security, reading and clearing fault codes and fuzz controllers for taking over car’s operation. It also included CAN bus DoS attacks and injection.
Watch his all presentation here:
Well, it seems like nothing is secure in this world. Hope you like this article. 🙂