Virtually all "connected cars" on the road are vulnerable to hackers who could steal data or gain control of the vehicle, a US senator's reports says.
The report, prepared by the staff of Senator Ed Markey, said the wireless connectivity and internet access available on the vehicles opens up security gaps that could be exploited for malicious purposes.
The study found these security weaknesses in "nearly 100 per cent of cars on the market" and noted that most car manufacturers were unaware of or unable to report on past hacking incidents.
The senator's staff, which collected data from 16 major car manufacturers, cited earlier studies on some vehicles which showed how hackers can get into the controls of some popular vehicles, causing them to suddenly accelerate, turn, de-activate brakes, activate the horn, control headlights, and modify the speedometer and gas gauge readings.
The report also noted that many of these connected cars collect data on driving that could be kept in violation of privacy.
It said that the "alarmingly inconsistent and incomplete state of industry security and privacy practices" raises questions about the need for new US rules from the National Highway Traffic Safety Administration or other federal agencies.
The report pointed out that hackers can gain access to a car via Bluetooth wireless connections, the OnStar system for remote assistance, malware in an Android smartphone which is paired with the vehicle, or even an infected CD in the car sound system.
"These findings reveal that there is a clear lack of appropriate security measures to protect drivers against hackers who may be able to take control of a vehicle or against those who may wish to collect and use personal driver information," the report said.
The report obtained responses from BMW, Chrysler, Ford, General Motors, Honda, Hyundai, Jaguar Land Rover, Mazda, Mercedes-Benz, Mitsubishi, Nissan, Porsche, Subaru, Toyota, Volkswagen and Volvo.
Share
