Skip to main content

OnStar hacking issue resolved, General Motors says

onstar hacking issue resolved general motors says remotelink03 medium
Image used with permission by copyright holder
About two weeks ago, a hacker exposed a vulnerability in General Motors’ OnStar telematics system that could allow ne’er-do-wells to remotely seize control of vehicles. GM has been implementing a fix to the problem, is now certain it is under control.

“We’re confident the issue is closed,” Terry Inch, GM’s OnStar chief, said in an interview with WardsAuto at a recent OnStar press event. GM began deploying its software fix almost immediately after the issue became public, and now believes the vulnerability has been completely eradicated.

Recommended Videos

Uncovered by researcher Sammy Kamkar, the vulnerability allowed hackers to break into a car’s onboard systems using the OnStar RemoteLink smartphone app. Chamber used a device positioned on the victim car to harvest credentials, and then use those credentials to mimic the app.

Please enable Javascript to view this content

Since the app allows drivers to do things like remotely lock and unlock doors, or start the engine, those powers would be conferred to the hacker. GM has since added a patch that allows the OnStar system to check for fake access certificates, something it wasn’t programmed to do before.

“We feel the vulnerability is taken care of by downloading the new RemoteLink app,” GM’s Inch said. However, he cautioned that future hacking episodes are still possible, saying that “we can’t say something like this will never happen again.”

Inch said GM is always looking into ways to improve the system, including working with universities and government agencies to identify additional possible weak points, and to pre-empt any future hacker attacks.

The OnStar hack came hot on the heels of a vulnerability in Chrysler’s Connect infotainment system that allowed researchers Charlie Miller and Chris Valasek to remotely take control of a Jeep Cherokee. Fiat Chrysler Automobiles is recalling 1.4 million vehicles to implement a software fix.

Perhaps the most tech-heavy car on the market, the Tesla Model S, also became a victim recently. At the recent DefCon convention in Las Vegas, hackers Kevin Mahaffey and Marc Rogers claimed they were able to break into a Model S and control certain functions, including remotely shutting the car down.

As cars become increasingly connected and computerized, it seems the same vulnerabilities that plague smaller-scale electronic devices are creeping into dashboards. Consumers may soon have to decide if connectivity is worth the price of safety.

Stephen Edelstein
Stephen is a freelance automotive journalist covering all things cars. He likes anything with four wheels, from classic cars…
Volvo EX90 vs Rivian R1S: Can Volvo take out the king of electric SUVs?
Headlights of the second-generation Rivian R1S

The long-awaited Volvo EX90 is finally here, bringing that Scandinavian design to the world of electric SUVs. But the new electric SUV has some serious competition -- especially at its reasonably high price. Chief among the competition is the Rivian R1S, which is largely considered to be the best electric SUV out there right now.

The EX90 has a lot going for it, though, including a stylish design, minimalistic interior, and more. Is the electric SUV from the legacy automaker good enough to beat the new kid on the block?
Design
Both the Volvo EX90 and the Rivian R1S are stylish and modern, but the designs of the two vehicles are pretty different. The Volvo EX90 could be described as a little more iterative in terms of design, at least compared to other Volvo vehicles.

Read more
EV incentives supported by 67% of Americans, survey finds
ev drivers support government incentives image

While the incoming Trump administration is expected to end federal tax credits supporting electric vehicle (EV) purchases and leases, yet another poll is showing just how popular these EV rebates remain.

According to a survey by the California-based nonprofit Veloz, 67% of Americans say that the government, be it at the federal, state, or local level, should provide purchase incentives for EVs.

Read more
Nvidia will power Toyota’s next-gen self-driving cars
Nvidia logo.

Nvidia has had a huge year, but it’s seemingly about to get even better for the company. At CES 2025, Nvidia CEO Jensen Huang unveiled not only its next-generation GPUs, but also its plan to expand into the automotive world.

That master plan doesn’t just involve the launch of new automotive-focused GPUs; it also includes expanded shipping of its vehicle-focused software called DriveOS. In fact, the company already has some partners working on next-generation vehicles that use DriveOS software, chief among them being Toyota.

Read more