thief can text car to unlock door, start motor - gps car alarm system
Hey, time traveler!
This article is published in 19/8/2010 (2843 days ago)
Therefore, the information in it may no longer be up to date. SAN FRANCISCO —
Texting and driving are not going well-
Not what you think.
Computer hackers can force some cars to unlock the door and start the engine mainly by sending carefully compiled messages to the car's-theft system.
They can also snoop where you 've been by clicking on the car's GPS system.
This is possible because car alarms, GPS systems and other devices are increasingly connected to cellular phone networks and commands can be received via text messages.
This feature allows the owner to remotely change the settings on the device, but also provides a way for hackers to enter.
Researchers from iSEC Partners recently showed this attack on a Subaru inland with unidentified fragile alarm systems.
They installed a laptop on the hood and sent Subaru's alarm system command to open the door and start the engine.
Their findings suggest that text messages are no longer limited to text messages telling friends that you are late or asking them if they are free to eat.
Text is a powerful means of attack because devices that receive text often cannot reject text and commands encoded in it.
The user cannot block the text;
Only operators of the telephone network can.
These devices are assigned phone numbers just like fax machines.
So if you can find the secret phone number connected to a particular device, you can throw it away by sending your own Command via SMS.
While these numbers should only be known to the operator of the device, they are not impossible to find.
The management program allows technicians to probe the network and see what devices are on the network.
Depending on the format of the response, you can export the type of device or even the model.
Hackers can use this information to attack devices they know are vulnerable to attack. (
In this case, the researchers bypassed these steps and simply took the alarm system out of the car to identify the secret phone number. )
It's not easy to steal a car.
For example, you have to make sure that the phone number you find is attached to the car you are standing next.
There are hacking tools to do this.
They listen to mobile traffic around a particular vehicle.
But in many cases it is easier to take a car without an alarm.
Research by Don Bailey and Mat Solnik is disturbing because it shows that this attack is possible on a variety of other devices that use wireless communication chips.
It includes ATMs, medical equipment, and even traffic lights.
Hackers have sent carefully crafted text with commands to immediately disconnect the iphone from the cellular network.
Bailey, who specializes in mobile network security, also found that similar technologies can be used to obtain some type of GPS system to obtain its location data.
For example, this information can be used by a walker or a burglary.
The type of GPS system he studied is called auxiliary GPS, which means that it uses cellular signals in addition to the usual satellite signals.
This makes the system fragile.
The study is not just about taking off with someone else's car, but about finding out where that person has been.
This increases other more dangerous possibilities, such as those that could affect braking and acceleration, said FBI director Scott Borg. S.
Network consequences Group, a group that studies the threat of hackers.
This becomes possible as network electronic devices are more tightly coupled with physical machinery.
"It's difficult to do something harmful, but we need to be prepared for people to do it," Borg said . ".
This study has received the attention of the power utility Trading Group of the North American power reliability company.
After the two presented the technology at this month's Black Hat safety conference in Las Vegas, the group warned that the type of wireless chip developed by the couple was also used in power plants, and said that more care is needed during use.
The vulnerable GPS system was manufactured by Zoombak.
Promote the practicality of its products in tracking children and cars.
The company said it had made changes to its devices so that, without a password, the external parties could no longer obtain location data.
Bailey and Sonic are working with automakers
An alarm system that fixes its vulnerability.
Unidentified manufacturers have solved many security issues, Bailey said.
More stringent safety standards are needed, Bailey said.
"We are so excited to use technology that we are deploying too quickly without really considering the impact of security," he said . ". —