Page 82 - Cyber Defense eMagazine for July 2020
P. 82
With an adoption rate like that, it won't be long before connected cars cover the roads. Not everyone
needs to drive an internet-enabled vehicle for them to impact everyone, either. Any hacked automobile
endangers nearby drivers and passengers, so even with a low penetration rate, they could be risky.
Cars aren't the only connected vehicles out there, either. Other modes of transportation, like ships, are
also becoming increasingly connected.
How Are Vehicles Vulnerable?
It's evident, then, that there are enough connected vehicles for hacking to be a concern. The number of
potential targets isn't the only factor at play, though. You also have to consider what makes these cars
targets in the first place.
The answer to this one is relatively straightforward. You can hack almost anything with an internet signal,
especially if it's an active connection. Internet-based functions in cars, like online radio, are active as they
send and receive commands, meaning you can hack them.
Some vehicles use Internet of Things (IoT) devices to do things like track engine performance or measure
fuel efficiency. These sensors provide hackers with another point of entry if they don't include proper
security features.
Is There a Precedent for Vehicle Hacking?
So has anyone hacked into a vehicle before? Yes, and vehicle hacking incidents may be more frequent
than you'd think. According to the cybersecurity firm Upstream, there were roughly 150 car hacking
incidents in 2019.
Considering how many connected cars there are, that figure isn't that massive. You should also consider
that this number also includes hacks on automotive companies, not just cars themselves. Still, it
represents a 99% increase over 2018's hacking incidents, which is a troubling trend.
While these real-world instances may not have been too harmful, tests show that they could be. In 2015,
hackers remotely cut the power of a Jeep as it was driving in a demonstration for Wired. If this were to
happen outside of a safety showcase, it could have disastrous results.
Responses from Manufacturers
Some good news is that vehicle manufacturers are aware of these potential risks. After the 2015 Wired
hacking demonstration, Fiat Chrysler sent 1.4 million car owners flash drives containing software patches.
Similarly, Tesla updated all Model Xs after researchers hacked into one and activated its brakes.
Both of these instances involve manufacturers responding to an issue they initially missed. Had malicious
actors exploited these problems before white-hat hackers, they could've been much more severe issues.
Cyber Defense eMagazine –July 2020 Edition 82
Copyright © 2020, Cyber Defense Magazine. All rights reserved worldwide.