Connect with us

Cars

Who will control your car?

Published

on

Kaspersky has found that many of the apps in the connected car contain a number of security issues that can potentially allow criminals to cause significant damage for connected car owners.

Kaspersky Lab researchers have examined the security of applications for the remote control of cars from several famous car manufacturers. As a result, the company’s experts have discovered that all of the applications contain a number of security issues that can potentially allow criminals to cause significant damage for connected car owners.

During the last few years, cars have started actively connecting to the Internet. Connectivity includes not only their infotainment systems but also critical vehicle systems, such as door locks and ignition, which are now accessible online. With the help of mobile applications, it is now possible to obtain the location coordinates of the vehicle as well as its route, and to open doors, start the engine and control additional in-car devices. On the one hand, these are extremely useful functions. On the other hand, how do manufacturers secure these apps from the risk of cyberattacks?

In order to find this out, Kaspersky Lab researchers have tested seven remote car control applications developed by major car manufacturers, and which, according to Google Play statistics, have been downloaded tens of thousands, and in some cases, up to five million times. The research discovered that each of the examined apps contained several security issues.

The list of the security issues discovered includes:

·         No defense against application reverse engineering. As a result, malicious users can understand how the app works and find a vulnerability that would allow them to obtain access to server-side infrastructure or to the car’s multimedia system

·         No code integrity check, which is important because it enables criminals to incorporate their own code in the app and replace the original programme with a fake one

·         No rooting detection techniques. Root rights provide Trojans with almost endless capabilities and leave the app defenseless

·         Lack of protection against app overlaying techniques. This helps malicious apps to show phishing windows and steal users’ credentials

·         Storage of logins and passwords in plain text. Using this weakness, a criminal can steal users’ data relatively easily.

Upon successful exploitation, an attacker can gain control over the car, unlock the doors, turn off the security alarm and, theoretically, steal the vehicle.

In each case the attack vector would require some additional preparations, like luring owners of applications to install specially-crafted malicious apps that would then root the device and get access to the car application. However, as Kaspersky Lab experts have concluded from research into multiple other malicious applications which target online banking credentials and other important information, this is unlikely to be a problem for criminals experienced in social engineering techniques, should they decide to hunt for owners of connected cars.

“The main conclusion of our research is that, in their current state, applications for connected cars are not ready to withstand malware attacks. Thinking about the security of the connected car, one should not only consider the security of server-side infrastructure. We expect that car manufacturers will have to go down the same road that banks have already gone down with their applications. Initially, apps for online banking did not have all the security features listed in our research. Now, after multiple cases of attacks against banking apps, many banks have improved the security of their products. Luckily, we have not yet detected any cases of attacks against car applications, which means that car vendors still have time to do things right. How much time they have exactly is unknown. Modern Trojans are very flexible – one day they can act like normal adware, and the next day they can easily download a new configuration making it possible to target new apps. The attack surface is really vast here,” said Victor Chebyshev, security expert at Kaspersky Lab.

Kaspersky Lab researchers advise users of connected car apps to follow these measures in order to protect their cars and private data from possible cyberattacks:

·         Don’t root your Android device as this will open almost unlimited capabilities to malicious apps

·         Disable the ability to install applications from sources other than official app stores

·         Keep the OS version of your device up to date in order to reduce vulnerabilities in the software and lower the risk of attack

·         Install a proven security solution in order to protect your device from cyberattacks.

Cars

Body-tracking tech moves to assembly line

Technology typically used by the world’s top sport stars to raise their game, or ensure their signature skills are accurately replicated in leading video games, is now being used on an auto assembly line.

Published

on

Employees at Ford’s Valencia Engine Assembly Plant, in Spain, are using a special suit equipped with advanced body tracking technology. The pilot system, created by Ford and the Instituto Biomecánica de Valencia, has involved 70 employees in 21 work areas. 

Player motion technology usually records how athletes sprint or turn, enabling sport coaches or game developers to unlock the potential of sport stars in the real world or on screen. Ford is using it to design less physically stressful workstations for enhanced manufacturing quality.

“It’s been proven on the sports field that with motion tracking technology, tiny adjustments to the way you move can have a huge benefit,” said Javier Gisbert, production area manager, Ford Valencia Engine Assembly Plant. “For our employees, changes made to work areas using similar technology can ultimately ensure that, even on a long day, they are able to work comfortably.”

Engineers took inspiration from a suit they saw at a trade fair that demonstrated how robots could replicate human movement and then applied it to their workplace, where production of the  new Ford Transit Connect and 2.0-litre EcoBoost Duratec engines began this month.

The skin-tight suit consists of 15 tiny movement tracking light sensors connected to a wireless detection unit. The system tracks how the person moves at work, highlighting head, neck, shoulder and limb movements. Movement is recorded by four specialised motion-tracking cameras – similar to those usually paired with computer game consoles – placed near the worker and captured as a 3D skeletal character animation of the user.

Specially trained ergonomists then use the data to help employees align their posture correctly. Measurements captured by the system, such as an employee’s height or arm length, are used to design workstations, so they better fit employees. 

Continue Reading

Cars

Electric cars begin to bridge the luxury gap

A new era has dawned as electric mobility bridges the gap between luxury and necessity, writes TREVOR HILL – head of Audi South Africa.

Published

on

Mobility is essential to today’s world. We travel to get to work, to go shopping, and to meet friends and family – in short, effective transport impacts on all aspects of our modern lives. Access to mobility is critical to economic growth and progress, bringing more opportunities and better productivity. At the same time however, growing environmental concerns and a looming shortage of fossil fuels have created tension between our ever-growing demand for mobility and the health of our planet.

Growing populations, increasing urbanization and economic and social development mean that there are more cars on our roads each day. The knock-on effects of this are greater levels of congestion and longer times spent commuting, which means more stress and higher levels of aggression on the road. Skyrocketing levels of air pollution – to which transportation is one of the leading contributors – has negative effects on both health and climate change, both of which are key issues in global policy agendas.

So, the writing has been on the wall for some time. The gold standard in automotive technological progress has thus been to achieve a radical reduction of engine emissions and the development of electric cars has been at the forefront of this charge. We have now entered the beginning of a new era, as more and more of these vehicles take to the roads. Electric cars are now at the cusp of the mass market, with a steady stream of new models set to reach the consumer in future. Last week, we launched the Audi e-tron, our first all-electric-drive SUV, at a world premiere in San Francisco – one huge leap forward in pursuit of our goal. Audi will also bring more than 20 electrified models to the market by 2025, from the compact class to the full-size category. Around a dozen models will be all-electric, while the remainder will be plug-in hybrids for emission-free driving on shorter journeys.

Powering this development is ongoing improvement in battery technology, with increasing energy density and lengthened driving ranges possible between charges. Consumers have noted that they feel confident using electric cars for day-to-day use once battery technology can sustain a driving range of 300 or more kilometres, which is now possible. The Audi e-tron has a range of 400 kilometers, making it ideal for long distance driving. Drivers who charge the e-tron overnight can set off in the morning in full confidence that they won’t need to stop at a charging station as they go about their day.

What this technological progress also means however, is that the levels of power and performance achieved by an electric car draw ever closer to those of traditional engines. For anyone who loves high strung, powerful engines and the rush of adrenaline that comes from flooring the throttle on an empty stretch of road, this is no small thing.  At Audi, we are lucky to be surrounded by some of the most exceptional engines ever produced, so few people understand the thrill of an extraordinary driving experience better than we do. So, the holy grail is to achieve this same performance with vastly improved economy.

The Audi e-tron’s electric drive has two asynchronous motors, one at the front, one at the rear, with a total output of 300 kW of power. This allows the Audi e-tron to accelerate from 0 to 100km/h in just 5.7 seconds.

The next step will be the development of electric cars suitable for those who regularly drive long distances, entailing further advances in battery technology, and the development of a network of charging stations across the country. The battery for the Audi e-tron is designed to last the entire life cycle of the vehicle. When charged at a high-power charging station at up to 150 kW, the Audi e-tron can be restored to 80% in less than half an hour. At 22 kW, the Audi e-tron can charge its battery to 100% in around four and a half hours.

For city dwellers, however, the age of electric mobility has well and truly arrived. Rapid advances in technology continue to drive progress; the rise of electric cars is only one of many developments set to transform transportation as we know it, heralding a cleaner, more efficient future.

 

Continue Reading

Trending

Copyright © 2018 World Wide Worx