OnStar hacking issue resolved, General Motors says

onstar hacking issue resolved general motors says remotelink03 medium
About two weeks ago, a hacker exposed a vulnerability in General Motors’ OnStar telematics system that could allow ne’er-do-wells to remotely seize control of vehicles. GM has been implementing a fix to the problem, is now certain it is under control.

“We’re confident the issue is closed,” Terry Inch, GM’s OnStar chief, said in an interview with WardsAuto at a recent OnStar press event. GM began deploying its software fix almost immediately after the issue became public, and now believes the vulnerability has been completely eradicated.

Uncovered by researcher Sammy Kamkar, the vulnerability allowed hackers to break into a car’s onboard systems using the OnStar RemoteLink smartphone app. Chamber used a device positioned on the victim car to harvest credentials, and then use those credentials to mimic the app.

Since the app allows drivers to do things like remotely lock and unlock doors, or start the engine, those powers would be conferred to the hacker. GM has since added a patch that allows the OnStar system to check for fake access certificates, something it wasn’t programmed to do before.

“We feel the vulnerability is taken care of by downloading the new RemoteLink app,” GM’s Inch said. However, he cautioned that future hacking episodes are still possible, saying that “we can’t say something like this will never happen again.”

Inch said GM is always looking into ways to improve the system, including working with universities and government agencies to identify additional possible weak points, and to pre-empt any future hacker attacks.

The OnStar hack came hot on the heels of a vulnerability in Chrysler’s Connect infotainment system that allowed researchers Charlie Miller and Chris Valasek to remotely take control of a Jeep Cherokee. Fiat Chrysler Automobiles is recalling 1.4 million vehicles to implement a software fix.

Perhaps the most tech-heavy car on the market, the Tesla Model S, also became a victim recently. At the recent DefCon convention in Las Vegas, hackers Kevin Mahaffey and Marc Rogers claimed they were able to break into a Model S and control certain functions, including remotely shutting the car down.

As cars become increasingly connected and computerized, it seems the same vulnerabilities that plague smaller-scale electronic devices are creeping into dashboards. Consumers may soon have to decide if connectivity is worth the price of safety.


Lyft and Aptiv’s self-driving car program has come a long way (but not far enough)

Many companies talk about self-driving cars, but Lyft and Aptiv are already using a fleet of them to transport paying customers in Las Vegas. Hop in for a close look at the tech of autonomous cars, and the challenges they face.

Hackers are scoring with ransomware that attacks its previous victims

Computer viruses are always evolving. In a new one, dubbed "Ryuk," hackers are targeting PCs with ransomware that scours an infected network in order to pinpoint and attack and enterprises with big money.

‘Fortnite’ security flaw let hackers spy on players through microphones

A security vulnerability found in Fortnite allowed hackers to gain access to other players' accounts, potentially letting them spy on conversations using the in-game microphone. It has been addressed.

Lost your router? Here's how to find its IP address to help track it down

Changing the login information for your router isn't always easy, that's why so many have that little card on the back. But in order to use it, you need to know where to go. Here's how to find the IP address of your router.

Driving Daimler’s 40-ton eCascadia big rig isn’t just fun, it’s electrifying

Daimler Trucks brought its all-electric eCascadia semi-truck to the 2019 CES, and invited us to take the wheel. What does it feel like to drive one? Simply electrifying, of course.

Tesla cuts workforce by 7 percent, ends referral program to trim costs

Tesla has announced plans to trim its workforce by seven percent, and it will end the referral program that rewards customers who help it sell cars. These measures are ways to cut costs and boost profits.
Emerging Tech

Awesome Tech You Can’t Buy Yet: camera with A.I. director, robot arm assistant

Check out our roundup of the best new crowdfunding projects and product announcements that hit the web this week. You may not be able to buy this stuff yet, but it sure is fun to gawk!

Worried about commuting in winter weather? Nissan has the answer

The Nissan Altima midsize sedan is now available with all-wheel drive. To advertise that fact, Nissan's Canadian division slapped some tank-like tracks on an Altima to create a one-off show car.
Emerging Tech

Too buzzed to drive? Don’t worry — this autonomous car-bar will drive to you

It might just be the best or worst idea that we've ever heard: A self-driving robot bartender you can summon with an app, which promises to mix you the perfect drink wherever you happen to be.

Michigan OKs digital license plates with Rplate’s connected car platform

The state of Michigan approved the use of digital license plates on motor vehicles registered in the state. Reviver Auto, the manufacturer of the Rplate connected car platform, worked with Michigan's Department of State to pass the bill.

This Chevy Silverado pickup truck is made from more than 300,000 Lego bricks

To promote The Lego Movie 2: The Second Part, Lego and Chevrolet teamed up on a life-size replica of the automaker's Silverado pickup truck made from more than 300,000 plastic bricks.

Prices for using Tesla Supercharging just skyrocketed

Tesla is updating their Supercharging pricing based on local electricity rates and customer demand, which has lead to an increase in charging costs by as much as 33 percent in some regions.

Can electric motors finally make three-wheeled cars great?

Every few years, someone tries to sell a three-wheeled vehicle to Americans. Historically, it hasn’t gone very well. We’ve got our suspicions about why people don’t buy trikes, and they boil down to this: a trike is just not a real…

Is Uber planning to put its self-driving tech into bikes and scooters?

Uber reportedly has its eye on building autonomous electric bikes and scooters that ride to a user when summoned by an app. The technology could also be used to make its two-wheelers safer with obstacle avoidance systems.