Skip to main content
  1. Home
  2. Cars
  3. Car News

Big truck hijacking vulnerability should be a wake-up call to trucking industry

By

Big trucks are more vulnerable to hacking than cars. In preparation for the Usenix Workshop on Offensive Technologies (WOOT ’16) security event in Austin, Texas, next week, researchers from the University of Michigan’s Transportation Research Institute hacked multiple systems in a big rig truck to demonstrate its vulnerability, according to Wired.

In 2015, another team demonstrated taking over a Jeep Cherokee remotely via the vehicle’s Uconnect cell-based system. That remote hijack sent a loud wake-up call to the consumer car world. Hijacking trucks and buses may be even easier. Individual automakers and car models from the same manufacturer use different codes, but most commercial trucks — from tractor trailers and school buses to garbage trucks and cement mixers — use the same communication standard. Once you know how to hijack one big truck, you can use the same codes with most others.

Recommended Videos

“These trucks carry hazard chemicals and large loads. And they’re the backbone of our economy,” researcher Bill Hass said. “If you can cause them to have unintended acceleration … I don’t think it’s too hard to figure out how many bad things could happen with this.”

Please enable Javascript to view this content

The team created several videos showing how they took control of various systems in a truck and a school bus. The researchers interfered with braking systems, took control of engine RPMs, and sent faulty readings to dashboard indicators.

The common link between the vehicles was the J1939 open standard used by the on-board diagnostic systems (OBDS). The Michigan team used a laptop while sitting in the vehicles to access the vehicles’ system via the diagnostic port for this demonstration project, not via a wireless connection, but the point was made.

Heavy trucks, just like consumer vehicles, increasingly connect to the outside world via cell-phone and other systems. Breaking through to the OBDS via remote wireless remains a further step, but according to Wired, another study found trucks vulnerable to remote attack via an insecure location-tracking dongle.

WOOT ’16, which takes place during the Usenix Security Symposium, August 10-12, is a two-day workshop of presentations on cryptographic attacks, mobile threats, evading malware detection, creative denial of service, vehicle hacking, and other security threats and issues, to bring them to the attention of affected industries and security firms that serve them.

Topics
Bruce Brown
Bruce Brown
Contributing Editor
Bruce Brown Contributing Editor   As a Contributing Editor to the Auto teams at Digital Trends and TheManual.com, Bruce…
BYD claims it’s made a major EV charging breakthrough
BYD megawatt charger

BYD, a Chinese EV (electric vehicle) manufacturer, has announced a new battery and charging system it claims can top-up an EV almost as quickly as it takes to fill a traditional combustion engine car with gas.

The Super E Platform is capable of delivering charging speeds of up to 1 megawatt (1000kW), equivalent to 2km of range every second at peak speeds. A five minute charge can replenish up to 400km (around 250 miles) of range.

Read more
Purely bespoke e-bike brand promises 22-pound expressions of passion and precision
Ponomarets EIDOLON bespoke ebike in platinum grey, right sideview.

Ponomarets Bikes, a German e-bike company based in Dresden, was founded in 2022 with a single mission:  to build the world's lightest bespoke e-bike.  The result is the Eidolon, a sub-22-pound, precisely engineered, made-to-order e-bike that Ponomarets creates one at a time. The Eidolon isn't for everyone but sets a high bar for other brands.

The Eidolon also isn't a red convertible in the front window of an auto dealer's showroom. It's not bait for more prosaic, less expensive e-bike models. Company founders Roman Ponomarets and Ludwig Eickemeyer are only interested in crafting moving art that epitomizes elegance and performance.
What makes the Eidolon so special?

Read more
Rivian is more tech company than car company, and that’s a good thing
Rivian R1S Gen 2.

The car world is kind of split right now. There are the legacy automakers -- the ones you know and love -- but there are also the new startups building all-new kinds of cars. The first of that new generation of car companies was Tesla, and obviously by now it's certainly not a startup. But over the past decade or so others have popped up. There's Lucid, which builds ultra-premium EVs, and, of course, there's Rivian, which has secured its spot as the go-to for those who want a more rugged EV.

I was recently able to tour Rivian's Palo Alto location and one thing became clear. The divide between traditional carmakers and the new startups is much deeper than just when they were founded. Companies like Rivian, in fact, are actually tech companies, that built high-quality computers that happen to have wheels on them.

Read more