Security News

Financial Cybercrime: Why Cryptocurrency is the Perfect ‘Getaway Car’
2021-09-09 17:51

This is part one of a two-part series on how hackers stole $2 million in cryptocurrency. There is one strong commonality with all these incidents and attacks: The hackers want the funds in cryptocurrency.

Top 5 autonomous car roadblocks
2021-08-31 18:15

Tom Merritt tells us the things that are getting in the way of autonomous car adoption. Here are five autonomous car road blocks we need to overcome.

Chinese auto-maker accused of altering data after fatal autonomous car accident
2021-08-24 08:02

Police are investigating an electrical vehicle company in China following claims that car data was tampered with following a fatal collision. On August 12, 31 year old Lin Wenqin was using the driver assistance feature on his Nio ES8 when he was involved in a fatal car crash.

BadAlloc Flaw Affects BlackBerry QNX Used in Millions of Cars and Medical Devices
2021-08-20 08:22

A major vulnerability affecting older versions of BlackBerry's QNX Real-Time Operating System could allow malicious actors to cripple and gain control of a variety of products, including cars, medical, and industrial equipment. BlackBerry QNX technology is used worldwide by over 195 million vehicles and embedded systems across a wide range of industries, including aerospace and defense, automotive, commercial vehicles, heavy machinery, industrial controls, medical, rail, and robotics.

After reportedly dragging its feet, BlackBerry admits, yes, QNX in cars, equipment suffers from BadAlloc bug
2021-08-19 01:35

BlackBerry this week issued a critical security advisory for past versions of its QNX Real Time Operating System, used in more than 175m cars, medical equipment, and industrial systems. BlackBerry QNX Software Development Platform version 6.5.0SP1 and earlier, QNX OS for Medical 1.1 and earlier, and QNX OS for Safety 1.0.1 are affected by an integer overflow vulnerability in the calloc() function of the C runtime library.

‘I’m Calling About Your Car Warranty’, aka PII Hijinx
2021-08-04 21:34

Black Hat: Researchers created 300 fake identities, signed them up on 185 legit sites, then tracked how much the sites used signup PII to pester the accounts. Researchers created 300 fake identities, signing them up on 185 legitimate websites ranging from Target to Fox News, with each identity used on a single website.

Thales offers cybersecurity solutions and services to secure connected cars
2021-07-09 02:00

Car manufacturers require reliable connectivity and cybersecurity solutions to bring more convenience and secure services for drivers, passengers and automotive players. To build securely connected solutions and meet the requirements of new regulations such as UNECE WP29 , car makers can rely on Thales.

Cars are packed with technology, and they can be hacked
2021-06-23 15:41

TechRepublic's Karen Roby spoke with Eric Sivertson and J.P. Singh of Lattice, a global semiconductor company, about cyberattacks in cars. Things are changing, and it's so important when it comes to cars that we keep up with security, because the thought of someone being able to just take over a car remotely, it's a pretty scary thought.

Researchers Find Exploitable Bugs in Mercedes-Benz Cars
2021-05-18 20:24

Following an eight-month audit of the code in the latest infotainment system in Mercedes-Benz cars, security researchers with Tencent Security Keen Lab identified five vulnerabilities, four of which could be exploited for remote code execution. In addition to targeting the main infotainment head unit, the security researchers also analyzed Mercedes-Benz's T-Box, successfully exploited some of the identified attack scenarios, and even combined some of them to compromise the head unit even in real-world vehicles.

Tencent research team scores free powerups for electric cars with Raspberry Pi-powered X-in-the-middle attack
2021-05-11 04:04

Chinese web giant Tencent's Blade Team, a security research group, showed they could circumvent payment schemes used at electric vehicle charging stations. Their exploits also changed the charging voltage and current, an act that could damage the EV. "The construction of charging stations is accelerating all over the world, but there is little research on the security of electric vehicle infrastructure," said TenCent Blade Team senior security researcher Wu HuiYu.