BMW Fixes 14 Vulnerabilities in Connected Cars

Bugs could have allowed remote control of vehicle.
Chinese security researchers have discovered 14 vulnerabilities in connected vehicles which could be used to remotely control a number of BMW models.

The team from Tencent’s Keen Security Lab tested several car models over a year, focusing on the Head Unit, Telematics Control Unit and Central Gateway Module.

Through mainly focusing on the various external attack surfaces of these units, we discovered that a remote targeted attack on multiple internet-connected BMW vehicles in a wide range of areas is feasible, via a set of remote attack surfaces (including GSM Communication, BMW Remote Service, BMW ConnectedDrive Service, UDS Remote Diagnosis, NGTP protocol, and Bluetooth protocol),” the report noted.

> Read entire article BMW Fixes 14 Vulnerabilities in Connected Cars | Phil Muncaster | InfoSecurity


Leave a comment

%d bloggers like this: