Several vulnerabilities found and fixed in Tesla S electric car

    image
    We managed to bypass the security system by connecting directly through the connection of one of the information screens.

    Computer security experts found six different vulnerabilities in the computer system of the Tesla Model S. Electric cars. Some of them allowed to start the car and leave, or remotely turn off the car’s power supply. But firstly, these vulnerabilities required the initial physical presence of burglars in the car, and secondly, the experts told about the vulnerabilities after they were fixed by the company that released the software update on Wednesday.

    In the future, car thieves will not have to bother with wiring and climb under the hood - they will look for vulnerabilities in on-board computer systems. Kevin Mahaffy of Lookout, a mobile security company, and Mark Rogers, CloudFlare’s security specialist, have been researching the Tesla S on-board system for two years now.

    In particular, they found out that it is possible, by connecting through the network connector on the instrument panel to the car network, to install a malicious program that will then allow you to perform various actions with the car. In addition, they found an outdated browser in the infotainment system of the machine using the vulnerable version of Apple WebKit. Theoretically, it would be possible to make such a website, after entering which the necessary trojan would be installed on it from the car’s computer.

    image
    "Hackers" opened the touch screen of the car. The

    researchers worked together with Tesla, and they corrected the bugs found in the next software patch. Problems with the computer systems of modern cars are no longer rare. For example, Fiat Chrysler recently had to recall1.4 million of its Jeep Cherokee due to the discovery of a vulnerability in a computer system that could be taken over via Wi-Fi - and after that, an attacker could gain access to all systems of the car, including control.

    Tesla came up with a more advanced software update system - car owners will only need to confirm the software update by clicking “Yes” in the notification that appears on their screens.

    “At first, in the new industry there is such a lemming effect - if no one pays due attention to safety, then all at the same time“ jump into the abyss, ”Mahaffi explained. “And if one or two companies take these issues seriously, then their experience helps raise the bar across the industry.”

    Representatives of the company Tesla argue that even when gaining access to their computer system, hackers will not be able, as in the case of Fiat Chrysler, to get full control of the car. The infotainment system is isolated from the vehicle control system. Even if you manage to turn off the power, the built-in protection system will automatically switch to neutral gear (and at low speeds - the hand brake will turn on), and the steering with pedals will remain under the control of the driver.

    Tesla Model S is a five-door electric car manufactured by the American company Tesla Motors. The prototype was first shown at the Frankfurt Motor Show in 2009; car deliveries to the United States began in June 2012. The capacity of the lithium-ion battery with a capacity of 85 kWh is enough for 426 km.

    Tesla Model S is not officially sold in Russia, but according to the traffic police, only in Moscow more than 80 cars are registered as of August 2014. Cars are delivered through gray dealers; in Russia there are several companies that are seriously involved in the sale of electric vehicles, as well as maintenance and development of infrastructure.

    Also popular now: