Cybersecurity in Connected Vehicles Becomes Safety Feature for New Cars
February 01, 2018
Beth Kindig
Lead Tech Analyst
New car firms such as Tesla are promoting increasingly high-tech features that require a connection to the internet, which has propelled cybersecurity in connected vehicles forward as a major safety feature. Last year, Chinese security researchers from Keen Security Lab successfully managed to hack a Tesla Model S from 12 miles away. By focusing on Tesla’s on-board software, the hack targeted the car’s controller area network, or CAN bus, which connects the chips found inside the cars. In this hack, the Model S P85 and Model 75D were targeted. Tesla continued to make news in 2015 for safety concerns in cybersecurity of connected vehicles. In November 2016, security personnel from the Norwegian company Promon were able to use the Tesla’s Android app as an entry point to successfully hack the vehicle. What’s more, using the features in the app, the hackers were able to locate the vehicle, unlock it and drive away unhindered.
As GM CEO Mary Barra said in a keynote speech, “A cyber incident is a problem for every automaker in the world. It is a matter of public safety.” As Tesla, GM and many others continue to release connected vehicles, the dangers of cybersecurity are very real. In fact, more than half of the vehicles sold today are connected and vulnerable. This threat will only grow as manufacturers begin to release autonomous vehicles.
Cybersecurity in Connected Vehicles and Mobile Applications
While gaining access to, and being able to control or steal, a vehicle such as a Tesla is disturbing enough, it raises several concerns about not only cybersecurity in connected cars, but also the mobile applications that extend the features of these vehicles and others. In fact, mobile apps are quickly becoming the main target for malicious behavior. Over the last four years, there has been a 188 percent increase in the number of Android vulnerabilities and a 262 percent increase in the number of iOS vulnerabilities. In addition, according to Gartner, 75 percent of mobile apps would fail basic security tests.
Digging deeper, Veracode found that four out of five applications written in PHP, Classic ASP and ColdFusion failed at least one of the OWASP Top 10, implying that many web-based applications and websites contain security vulnerabilities. More than 80 percent of mobile apps on both the Android and iOS platform revealed cryptographic implementation issues. This attempt to protect and then doing it poorly highlights the importance of updated training and tools to aid these feature developers as they target secure and protected applications.
Recently, Android malware has become more stealth. Last year, in 2015, malware began to obfuscate code to bypass signature-based security software. Despite Google’s response to critical vulnerabilities and patches of critical issues in the Android OS, end users are still dependent on device manufacturers for these updates.
Tesla and other automobiles today can have the computing power of 20 personal computers and feature 100 million lines of programming code. While features such as web browsing, Wi-Fi access points and remote-start mobile phone apps, help to enhance the enjoyment of the vehicle, they also add more opportunities for advanced attacks. In real life, thieves are hacking keyless entry systems in the UK to steal cars, meanwhile, software recalls have doubled within the past year, and soon they will match mechanical recalls.
The mobile application industry is pushing forward a new level of interoperability that will require heightened security and privacy measures. App developers are in a position where they can reduce the number of vulnerabilities before the app ships. Auto manufacturers are also prioritizing cybersecurity in connected vehicles as a major safety feature to compete with features requiring connectivity.
This article originally appeared on Intertrust.com
Read more about how Intertrust’s suite of products helps automobile manufacturers address privacy and security in the age of the connected car.
Gains of up to 403% from our Free Newsletter.
Here are sample stock gains from the I/O Fund’s newsletter --- produced weekly and all for free!
+344% on Nvidia
+403% on Bitcoin
+218% on Roku
*as of March 15, 2022
Our newsletter provides an edge in the world’s most valuable industry – technology. Due to the enormous gains from this particular industry, we think it’s essential that every stock investor have a credible source who specializes in tech. Subscribe for Free Weekly Analysis on the Best Tech Stocks.
If you are a more serious investor, we have a premium service that offers lower entries and real-time trade alerts. Sample returns on the premium site include 324% on Zoom, 601% on Nvidia, 445% on Bitcoin, and 4-digits on an alt-coin. The I/O Fund is audited annually to prove it’s one of the best performing Funds on the market with returns that beat Wall Street funds.
More To Explore
Newsletter
The Strongest Cybersecurity Stocks In Q3
Cybersecurity stocks have performed well in 2023, rising about +26.5% YTD, with the security backdrop boosted by an increase in data breaches and ransomware.
Nvidia’s Fiscal Q3 Earnings Preview: The Pressure Is On
Nvidia has surged this year with 241% gains YTD, which has more than doubled the returns of the FAANGs. This is no small feat considering it’s widely understood Big Tech is holding up the broader mark
Apple’s Services Growth Flywheel Continues To Strengthen
Apple’s Services segment was one of the brightest spots in a relatively in-line earnings report at the beginning of November, topping an $85 billion run rate as growth jumped back to the high double-d
Tesla Sells 33% Of Vehicles Below Average Cost, BYD Pulls Ahead
BYD more than doubled Tesla’s China sales in October as Tesla’s sales slipped on a month-over-month basis, while NEV startups showed strong sales numbers across the board. China’s new energy vehicle (
Solar Stocks Still Searching For A Bottom
Solar is arguably one of the market’s most sold-off industries at the moment, with the Invesco Solar ETF falling more than 42% YTD as the industry struggles to find growth in a high-rate environment.
Five Stocks (Not Seven) Can Lead to New Highs
The majority of other sectors are confirming a continuation of the 2022 bear market, meanwhile, a handful of big tech names, with outsized weighting in the major indexes, suggest that they want to go
Big Tech Stocks: Q3 Earnings Preview
Earnings season has officially kicked off, with Big Tech headlining a busy week next week: Microsoft and Google report on Tuesday, followed by Meta on Wednesday, and Amazon on Thursday. Big Tech stock
AI Could Be Apple’s Next Chapter
After Nvidia added $750 billion in value this year on the backs of surging AI chip demand, investors are quickly searching for the next trillion-dollar AI winner. AI is the best investment opportunity
AI is the Best Investment Opportunity of our Lifetime: Video Interview
Real Vision invited Beth Kindig back for a candid interview with Raoul Pal for a one-hour discussion on how to position for AI. As discussed in the interview, the reason that AI will be the best inves
The Next Market AI Will Disrupt Is Cybersecurity
Cybersecurity is one of the highest costs that enterprises face at 12% of IT budgets on average, and this cost is rapidly rising. While a company can lay off staff or reduce marketing and R&D expenses