Connected car manufacturers have been urged to fundamentally improve the design of their vehicles after major new research revealed flaws across virtually every single component or device tested – at least half of which could be exploited with potentially serious consequences.
Researchers at
IOActive spent over 16,000 man hours and three years compiling their latest report,
Commonalities in Vehicle Vulnerabilities.
While no specific makes and models of car are mentioned, report author Corey Thuen confirmed to
Infosecurity that his team evaluated a multitude of components from tier 1 and tier 2 suppliers which end up in a variety of OEM-end vehicles.
As such, the report “touches a majority of the vehicle market,” he claimed.
Every system tested had at least one vulnerability and failed to follow industry best practice in some way.
More worryingly, half of those discovered bugs were rated critical (25%) or high (25%) impact, meaning they could lead to “complete or partial loss of control over the system,” the report found.
