Chinese security researchers have discovered 14 vulnerabilities in connected vehicles which could be used to remotely control a number of BMW models.
The team from Tencent’s Keen Security Lab tested several car models over a year, focusing on the Head Unit, Telematics Control Unit and Central Gateway Module.
“Through mainly focusing on the various external attack surfaces of these units, we discovered that a remote targeted attack on multiple internet-connected BMW vehicles in a wide range of areas is feasible, via a set of remote attack surfaces (including GSM Communication, BMW Remote Service, BMW ConnectedDrive Service, UDS Remote Diagnosis, NGTP protocol, and Bluetooth protocol),” the report noted.
> Read entire article BMW Fixes 14 Vulnerabilities in Connected Cars | Phil Muncaster | InfoSecurity