Infosecurity.US

Information Security & Occasional Forays Into Adjacent Realms

  • Web Log

DEF CON 27, Wireless Village, Woody's 'The Ford Hack Raptor Captor Video' →

December 18, 2019 by Marc Handelman in Conferences, DEF CON 27, Education, Automobile Security, Information Security

Thanks to Def Con 27 Volunteers, Videographers and Presenters for publishing their superlative conference videos via their YouTube Channel for all to see, enjoy and learn.

December 18, 2019 /Marc Handelman
Conferences, DEF CON 27, Education, Automobile Security, Information Security

Positioning System Spoof Lash-up Can Reroute Robotic Automobiles Into Opposing Traffic

July 22, 2018 by Marc Handelman in Information Security, Hardware Security, Automation, Automobile Security

Bad mojo written up at Ars Technica and The Wall Street Journal, in the GPS realm. It's high time for the manufacturers to step up remediation efforts targeting these pernicious position system flaws. Until the appropos remediations and mitigations are firmly ensconced within the hardware and software under scruitny, no human should trust autonomous-navigating conveyances, unless - of course - you are actively testing those systems.

"“Our study demonstrated the initial feasibility of manipulating the road navigation system through targeted GPS spoofing,” the researchers, from Virginia Tech, China’s University of Electronic Sciences and Technology, and Microsoft Research, wrote in an 18-page paper (emphasis added). “The threat becomes more realistic as car makers are adding autopilot features so that human drivers can be less involved (or completely disengaged).”" - via Ars Technica Security Editor Extraordinaire Dan Goodin

July 22, 2018 /Marc Handelman
Information Security, Hardware Security, Automation, Automobile Security

Bad News Beemer, The Flaw Tales →

May 29, 2018 by Marc Handelman in Automobile Security, Information Security, Hardware Security, Hardware Flaws, Must Read

Charlie Osborne writing for ZDNet's Zero Day, regales us with the story of the proverbial Bad Beemer, and the discoveries of deep flaws in the German automaker's usually highly regarded automobiles, by Tencent's Keen Security Labs. Today's Must Read.

May 29, 2018 /Marc Handelman
Automobile Security, Information Security, Hardware Security, Hardware Flaws, Must Read

via Luke Kingma & Lou Patrick-Mackay at Futurism Cartoons

Luke Kingma & Lou Patrick-Mackay's, 'Self-Driving Crowd Sourced Tech Support' →

May 26, 2018 by Marc Handelman in Robotics, Physical Security, Information Security, Automation, Automobile Security
May 26, 2018 /Marc Handelman
Robotics, Physical Security, Information Security, Automation, Automobile Security
Blunt-End.png

Blunted →

August 06, 2015 by Marc Handelman in Automobile Security, Information Security

Count another automaker in as a Charter Member of the Automobile Application Security SNAFU Club. Unfortunately, there is no AAA Roadside Assistance... Just the nearly ubuiquitous OTA (of which, in this case, is reportedly part of the problem as implemented by the automakers...).

August 06, 2015 /Marc Handelman
Automobile Security, Information Security
Samy Kamkar" by Vissago / Dan Tentler

Samy Kamkar" by Vissago / Dan Tentler

Kamkars' OnStar →

August 04, 2015 by Marc Handelman in All is Information, Automobile Security, Information Security, Control Systems, Network Security

And the slew of vehicle flaws just keep coming... Witness Samy Kamkar's superb research targeting the General Motors Corporation (NYSE: GM) OnStar product as the vector in to a relatively unexplored country. Watch the video, and I'm sure you will arrive at a similar comclusion...

Photo of Samy Kamkar Attrribution: "Samy Kamkar" by Vissago / Dan Tentler - http://www.flickr.com/photos/vissago/4861025347/. Licensed under CC BY 2.0 via Wikimedia Commons - https://commons.wikimedia.org*

August 04, 2015 /Marc Handelman
All is Information, Automobile Security, Information Security, Control Systems, Network Security