Automaker Cybersecurity Lagging Behind Tech Adoption, Experts Warn

A bug in Honda is indicative of the sprawling car-attack surface that could give cyberattackers easy access to victims, as global use of ‘smart car tech’ and EVs surges.

A pair of recent vulnerabilities found in the automaker ecosystem might not seem like a real danger taken separately. But experts warn a lack of attention on cybersecurity could plague “smart” car and electric vehicle systems — and users — in years to come, as the use of automotive technology continues to explode.

One bug was recently found in the communications between the remote keyless entry function on Honda and Acura cars.

Easily intercepted radio signals from the wireless entry key fob on almost any Honda and Acura vehicle could allow a threat actor to lock and unlock, and even start the car, according to a new disclosure from a pair of researchers.

Ayyappan Rajesh, who is a student at UMass Dartmouth, and Blake Berry (HackingIntoYourHeart) reported the flaw (CVE-2022-27254) and provided additional details of the vulnerability in a GitHub post.

“A hacker can gain complete and unlimited access to locking, unlocking, controlling the windows, opening the trunk, and starting the engine of the target vehicle where

Read More: https://threatpost.com/automaker-cybersecurity-lagging-tech-adoption/179204/