Security News > 2020 > April > Consumer reviewer Which? finds CAN bus ports on Ford and VW, starts yelling 'Security! We have a problem...'

Consumer reviewer Which? finds CAN bus ports on Ford and VW, starts yelling 'Security! We have a problem...'
2020-04-09 14:20

Modern connected cars contain security threats, consumer org Which? has said after commissioning analyses of two models, a Ford and a Volkswagen.

Researchers from Context Information Security were able to find their way into two cars' infotainment units, the dash-mounted screen that displays everything from car information to GPS-based moving maps to your favourite radio station or motorway playlist.

"While the cars proved more difficult to hack into than many connected products, Context researchers managed to find weaknesses in the cars' security designs and were even able to identify what is suspected to be a Wi-Fi password from Ford's manufacturing plant," said Context in a separate statement from Which's one.

Ian Tabor, a security-focused network architect who runs Car Hacking Village UK, told The Register: "The access to the ADAS radar system wiring could potentially give access to the CAN network that controls the security of the vehicle depending on how the CAN networks are segregated, not just affect the collision warning system."

Context did say it had found what looked very much like a Ford factory Wi-Fi password saved in that car's IVI, presumably from factory testing.


News URL

https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/04/09/which_car_hacking_report/