Onboard telematics vulnerable to hack, Uconnect Chryslers vulnerable

Discussion in 'Other News' started by Infosaur, Jul 21, 2015.

  1. Infosaur

    Infosaur Road Train Member

    http://www.theverge.com/2015/7/21/9009213/chrysler-uconnect-vulnerability-car-hijack

    It seems like such a basic concept. Keep critical systems isolated from "accessible" systems.

    But yet again the "we're smarter than stupid truckers" tech geniuses integrated their telematics with their primary control systems and somebody figured out a way to exploit the vulnerablility.

    *facepalm*

    And they want to replace truckers with robots when? 2020? Riiiiight!
     
  2. Truckers Report Jobs

    Trucking Jobs in 30 seconds

    Every month 400 people find a job with the help of TruckersReport.

  3. AModelCat

    AModelCat Road Train Member

    29,853
    166,469
    Jul 7, 2015
    Canuckistan
    0
    Suncor is apparently testing driverless mining trucks at one of their sites right now. I'd hate to be anywhere near there when hackers take over one of those. Apparently none of these engineers have watched Maximum Overdrive.
     
    browndawg Thanks this.
  4. Infosaur

    Infosaur Road Train Member

    Hmmm, admittedly hackers would have to know they exist to target them.

    Accident at a mine could probably be covered up (or as typical corporate policy, blamed on some random employee until it happens enough times to warrant a halfway decent investigation)
     
  5. AModelCat

    AModelCat Road Train Member

    29,853
    166,469
    Jul 7, 2015
    Canuckistan
    0
    At the mine sites I work at, they take safety to the extreme. I'm not joking when I say it's to the point where we almost have to work in a hamster ball. It's so strict that you could be reported/written up for taking your gloves off to install a tiny 1/4" bolt.
     
  6. Infosaur

    Infosaur Road Train Member

    Yeah, but my point is if a mine truck went out of control, they'd blame a guy for putting in screws w/out gloves before they'd look to see if their network was compromised.
     
  7. uncleal13

    uncleal13 Road Train Member

    3,797
    6,300
    Apr 9, 2009
    Humboldt, Sk
    0
    Steve Gibson's podcast on Security Now has been warning of this possibility for a few years now. No company worries about it's customers security because of The Bottom Line, and for the sake of convenience.
     
  8. supersnackbar

    supersnackbar Road Train Member

    20,457
    55,003
    Aug 19, 2007
    Your Town, USA
    0
    Just read a report on Yahoo about hackers showing that they gained access to a car rolling down the road (Fiat/Chrysler I think) it was a controlled demonstration (they hacked one of their own cars with the owner behind the wheel). Turned on lights, turn signals, changed radio stations, changed the HVAC settings...all remotely. And the OnStar system on GM's have been hacked a few years ago...drivers were having their alarms going off, car shutting off while rolling down the road...

    The scary thing is, my company is in the process of connecting all their POS Prostars to the remote diagnostic program thru Navistar via the q/comm...so when the engine light comes on again, they know what is wrong, then can determine if it's an urgent repair or just a 'at the earliest convenience' type thing...if my truck starts driving itself, I'm pulling the fuse on the q/c...where is my horse and buggy Samual...I'm converting to being Amish...you can't hack a horse.
     
  9. brsims

    brsims Road Train Member

    5,296
    6,522
    Aug 8, 2009
    Meadville, PA
    0
    Any time you have a remote accessible connection to the ECM, you have a hackable situation. My only surprise is that it took this long.

    How long before we go back to purely mechanical operation to avoid being hacked on the road? That's the question I want answered.
     
  10. Criminey Jade

    Criminey Jade Road Train Member

    1,609
    1,803
    Aug 16, 2013
    Not Colorado Anymore
    0
    QUOTE= supersnackbar -
    "The scary thing is, my company is in the process of connecting all their POS Prostars to the remote diagnostic program thru Navistar via the q/comm...so when the engine light comes on again, they know what is wrong, then can determine if it's an urgent repair or just a 'at the earliest convenience' type thing."

    I wish Freightliner and Kenworth would do this and I ask why it hasn't been done already. I hate-hate-hate that mystery check engine light. I hate it even worse when J-Pro says 'contact dealer' and the dealer refuses to ID the code. Meanwhile, my Mom's car emails her a diagnostic report. If you can put that in a GM car, you can put that in a CMV. Why do owners and drivers have to lose money sitting at a dealer for 3 days for 'diagnostics' when your system can tell you where and WHAT the fault is before you show up?

    ...and if you're worried about someone taking control of your system, just make it a one-way conduit of information. You can't get into it, you can only get reports.
     
  11. DUNE-T

    DUNE-T Road Train Member

    7,085
    17,263
    May 10, 2015
    Detroit, MI
    0
    Shell out couple grand for diagnostic equipment and carry it with you. Its well worth it
     
    Criminey Jade Thanks this.
  • Truckers Report Jobs

    Trucking Jobs in 30 seconds

    Every month 400 people find a job with the help of TruckersReport.