Cybersecurity in Connected Vehicles Becomes Safety Feature for New Cars
February 01, 2018
Beth Kindig
Lead Tech Analyst
New car firms such as Tesla are promoting increasingly high-tech features that require a connection to the internet, which has propelled cybersecurity in connected vehicles forward as a major safety feature. Last year, Chinese security researchers from Keen Security Lab successfully managed to hack a Tesla Model S from 12 miles away. By focusing on Tesla’s on-board software, the hack targeted the car’s controller area network, or CAN bus, which connects the chips found inside the cars. In this hack, the Model S P85 and Model 75D were targeted. Tesla continued to make news in 2015 for safety concerns in cybersecurity of connected vehicles. In November 2016, security personnel from the Norwegian company Promon were able to use the Tesla’s Android app as an entry point to successfully hack the vehicle. What’s more, using the features in the app, the hackers were able to locate the vehicle, unlock it and drive away unhindered.
As GM CEO Mary Barra said in a keynote speech, “A cyber incident is a problem for every automaker in the world. It is a matter of public safety.” As Tesla, GM and many others continue to release connected vehicles, the dangers of cybersecurity are very real. In fact, more than half of the vehicles sold today are connected and vulnerable. This threat will only grow as manufacturers begin to release autonomous vehicles.
Cybersecurity in Connected Vehicles and Mobile Applications
While gaining access to, and being able to control or steal, a vehicle such as a Tesla is disturbing enough, it raises several concerns about not only cybersecurity in connected cars, but also the mobile applications that extend the features of these vehicles and others. In fact, mobile apps are quickly becoming the main target for malicious behavior. Over the last four years, there has been a 188 percent increase in the number of Android vulnerabilities and a 262 percent increase in the number of iOS vulnerabilities. In addition, according to Gartner, 75 percent of mobile apps would fail basic security tests.
Digging deeper, Veracode found that four out of five applications written in PHP, Classic ASP and ColdFusion failed at least one of the OWASP Top 10, implying that many web-based applications and websites contain security vulnerabilities. More than 80 percent of mobile apps on both the Android and iOS platform revealed cryptographic implementation issues. This attempt to protect and then doing it poorly highlights the importance of updated training and tools to aid these feature developers as they target secure and protected applications.
Recently, Android malware has become more stealth. Last year, in 2015, malware began to obfuscate code to bypass signature-based security software. Despite Google’s response to critical vulnerabilities and patches of critical issues in the Android OS, end users are still dependent on device manufacturers for these updates.
Tesla and other automobiles today can have the computing power of 20 personal computers and feature 100 million lines of programming code. While features such as web browsing, Wi-Fi access points and remote-start mobile phone apps, help to enhance the enjoyment of the vehicle, they also add more opportunities for advanced attacks. In real life, thieves are hacking keyless entry systems in the UK to steal cars, meanwhile, software recalls have doubled within the past year, and soon they will match mechanical recalls.
The mobile application industry is pushing forward a new level of interoperability that will require heightened security and privacy measures. App developers are in a position where they can reduce the number of vulnerabilities before the app ships. Auto manufacturers are also prioritizing cybersecurity in connected vehicles as a major safety feature to compete with features requiring connectivity.
This article originally appeared on Intertrust.com
Read more about how Intertrust’s suite of products helps automobile manufacturers address privacy and security in the age of the connected car.
More To Explore
Newsletter
Robinhood Stock: Spot Crypto Volumes May Lead to Incoming Volatility
Robinhood’s fundamental transformation over the past two years has been nothing short of remarkable. Crypto is driving strong revenue growth at 50% YoY in Q1, while TTM operating margin is approaching
AI Stocks in 2025: What Every Investor Should Know
The market evolves quickly, and nowhere is that more apparent than in AI stocks, which continue to lead in both innovation and returns. At the I/O Fund, our deep coverage of AI stocks, combined with a
Nuclear Power Emerging as a Clean AI Data Center Energy Source
Data center power demand is forecast to surge over the next decade, with some estimates seeing demand increasing 3x by 2030. Inference is expected to be a primary driver with power demand growth proje
AMD vs Nvidia: The AI Stock That Could Win by 2028
Last week, AMD offered more details on the release of their groundbreaking GPUs with little fanfare in the markets – which is par for the course as AMD has a history of being forgotten about until the
This AI Stock is Set to Surge from Inference Demand
Up until now, the AI conversation has been dominated by training and compute, yet inference is showing signs of exploding growth. Microsoft and Google recently highlighted 5x to 9x YoY growth in AI to
Taiwan Semiconductor Stock: AI Growth Amid Geopolitical Risk
Despite their leadership, AI stocks like Taiwan Semiconductor and Nvidia are flat year-to-date and trading at similar levels as June 2024. Clearly, the AI trade is not as straightforward as it might s
Historic Market Uncertainty Meets $7 Trillion Debt Wall: What Comes Next for the S&P 500
We are seeing mounting evidence that this bounce may be the start of a new push to all-time highs, such as improved breadth, better than expected earnings plus the size of this bounce. However, one ca
Nvidia Stock Faces a Choppy Q2, But Tailwinds Build for H2 Acceleration
Nvidia’s streak of blockbuster earnings has turned investor expectations into a high-stakes game— anything short of perfection risks disappointment. As the company gears up to report fiscal Q1 results
Microsoft Stock Surges After Q3 2025 Earnings: What Separates Azure from AWS, Google Cloud
Microsoft stock jumped after Q3 2025 earnings as Azure emerged as the only major cloud platform to accelerate growth this quarter — a rare feat amid macro pressures. Azure’s 35% constant currency grow
Why Bitcoin’s Bull Run May Be Nearing a Top Despite Pro-Crypto Tailwinds
Since calling the Bitcoin bottom near $16,000 in late 2022, the I/O Fund has maintained a disciplined, contrarian approach — issuing 13 buy alerts before Bitcoin surged above $100,000. Now, signs sugg