Security News > 2024 > March > Truck-to-truck worm could infect – and disrupt – entire US commercial fleet

Truck-to-truck worm could infect – and disrupt – entire US commercial fleet
2024-03-22 00:03

While there are some 880 devices registered, "Only a few tens of distinct ELD models" have hit the road in commercial trucks.

They used bench level testing systems for the demo, as well as additional testing on a moving 2014 Kenworth T270 Class 6 research truck equipped with a vulnerable ELD. "In our evaluation of ELD units procured from various resellers, we discovered that they are distributed with factory default firmware settings that present considerable security risks," the authors noted.

The worm uses the compromised device's Wi-Fi capabilities to search for other vulnerable ELDs nearby.

After finding the right ELDs, the worm uses default credentials to establish a connection, drops its malicious code on the next ELD, overwrites existing firmware, and then starts the process over again, scanning for additional devices.

While both vehicles were in motion, in just 14 seconds the team connected to the truck's Wi-Fi, used the ELD's interface to re-flash the device, and started sending malicious messages causing the truck to slow down.

According to Jepson, the researchers disclosed the flaws to the ELD manufacturers and the US Cybersecurity and Infrastructure Security Agency before publishing the paper.


News URL

https://go.theregister.com/feed/www.theregister.com/2024/03/22/boffins_tucktotruck_worm/