McAfee warns of hacker threat to autos

Sep 07, 2011 by Glenn Chapman
Cars made smarter with Internet technology are zooming into perilous hacker territory, according to a report by US computer security giant McAfee.

Cars made smarter with Internet technology are zooming into perilous hacker territory, according to a report by US computer security giant McAfee.

The first-of-its-kind report, entitled "Caution: Malware Ahead" and released late Tuesday, warned that security is lagging as vehicles are enhanced with embedded chips and sensors for a growing array of purposes.

"As more and more functions get embedded in the of automobiles, the threat of attack and malicious manipulation increases," said McAfee and general manager Stuart McClure.

"It's one thing to have your email or laptop compromised, but having your car hacked could translate to dire risks to your personal safety," he added.

Chips are embedded in almost all parts of cars from airbags, brakes, and power seats to cruise controls, anti-theft gadgets, and , according to McClure.

Researchers have demonstrated that computers controlling functions in automobiles can be hacked if attackers get into vehicles and, in some cases, from afar.

A security consultant with iSEC Partners showed peers at a recent security conference in Las Vegas that it is possible to unlock or start cars by sending commands in the form of text messages from smartphones.

Sensors used by roadside to find cars or by car owners to make sure vehicles are being driven safely, can give cyber stalkers ways to track someone's movements, according to the report.

Hackers could disrupt car navigation systems, steal through Bluetooth connections, or disable vehicles remotely, the findings indicated.

"The is continually adding features and technologies that deliver new conveniences such as Internet access and the ability to further personalize the ," the report said.

"However, in the rush to add features, security has often been an afterthought," it said.

There were no indications that hackers have yet taken advantage of computer vulnerabilities in cars, according to McAfee.

McAfee and smart gadget software specialty firm Wind River, both owned by US chip colossus Intel, collaborated with embedded device security firm ESCRYPT on the study.

"As the trend for ubiquitous connectivity grows, so does the potential for security vulnerabilities," said Wind River senior director for automotive solutions Georg Doll.

"The report highlights very real security concerns, and many in the auto industry are already actively designing solutions to address them," Doll added.

Researchers cited industry projections that the number of Internet connected devices will climb to 50 billion in the year 2020 from a billion last year.

The bulk of those gadgets are expected to be embedded devices such as airport ticket kiosks, cash registers, key card readers, and controls for factory machinery.

"Today, we're seeing bold new experiments, including Google's auto-piloted cars and smart roads with sensors that report on traffic conditions and vehicle speeds," the report said.

"Experiments like these show the ongoing possibilities... But there is a concern that as the industry advances, there has been little done to ensure the security of these systems."

Explore further: Freight train industry to miss safety deadline

add to favorites email to friend print save as pdf

Related Stories

Intel completes McAfee acquisition

Feb 28, 2011

US computer chip giant Intel said Monday that it has completed its $7.68 billion acquisition of computer security firm McAfee.

Facebook teams with McAfee to tighten security

Jan 13, 2010

Facebook has announced an alliance with Internet security specialty firm McAfee to get user of the world's leading online social network to better protect their computers.

Recommended for you

Freight train industry to miss safety deadline

3 hours ago

The U.S. freight railroad industry says only one-fifth of its track will be equipped with mandatory safety technology to prevent most collisions and derailments by the deadline set by Congress.

Gaza cops trade bullets for laser-tech in training

Apr 14, 2014

Security forces in the Hamas-ruled Gaza Strip are using technology to practice shooting on laser simulators, saving money spent on ammunition in the cash-strapped Palestinian territory.

User comments : 5

Adjust slider to filter visible comments by rank

Display comments: newest first

3.7 / 5 (3) Sep 07, 2011
"first of its kind" is a complete fallacy - "first time McAfee spotted it" would be more accurate - and only because Intel told them, and the auto industry told Intel in turn.
This is a reasonably well researched field, maybe start here?
5 / 5 (1) Sep 07, 2011
McAfee has a long, long history of acting the Chicken Little. Indeed they have a financial stake in it.

Their expertise lies less in knowledge of computer security and more in the manipulation and capitalization of the public's fear of computer security.
5 / 5 (2) Sep 07, 2011
Don't ever leave your driveway without MacAfee AutoShield, the first, the premier, and the best security, for your family!!
not rated yet Sep 08, 2011
Don't ever leave your driveway without MacAfee AutoShield, the first, the premier, and the best security, for your family!!

Of course, popping into your car for a quick trip to get milk would require an extra 10 minutes of wading through pop-up warnings, scans, and updates.
not rated yet Sep 08, 2011
"'However, in the rush to add features, security has often been an afterthought,' it said."

I think this falls in the area of "Yes. Dun!" I have a system X that has (oft logic-based) inputs, ditto for outputs, with programmable logic in between. What part of said system X being crackable/hackable don't you comprehend?!

More news stories

Microsoft CEO is driving data-culture mindset

( —Microsoft's future strategy: is all about leveraging data, from different sources, coming together using one cohesive Microsoft architecture. Microsoft CEO Satya Nadella on Tuesday, both in ...

Simplicity is key to co-operative robots

A way of making hundreds—or even thousands—of tiny robots cluster to carry out tasks without using any memory or processing power has been developed by engineers at the University of Sheffield, UK.

IBM posts lower 1Q earnings amid hardware slump

IBM's first-quarter earnings fell and revenue came in below Wall Street's expectations amid an ongoing decline in its hardware business, one that was exasperated by weaker demand in China and emerging markets.

Down's chromosome cause genome-wide disruption

The extra copy of Chromosome 21 that causes Down's syndrome throws a spanner into the workings of all the other chromosomes as well, said a study published Wednesday that surprised its authors.