BMW Patches Security Flaw Affecting Over 2 Million Vehicles

An anonymous reader writes BMW has fixed a security bug which left 2.2 million cars, including models from Rolls Royce and Mini, exposed to hackers. The flaw was discovered in vehicles using BMW's ConnectedDrive software, which runs from an installed on-board Sim card. Via the smartphone app, owners can remotely control a number of functions including door locks, air conditioning and sounding the horn. Researchers from the German motorist association ADAC identified the flaw which allowed the system to connect to fake mobile phone networks, enabling hackers to remotely control the Sim card.

Re:better solution: don't make cars network-capabl

OP here.

Your phone doesn't do those things, but there's no reason it *can't*.

Phones have high-speed data/charging ports, yet they go unused. And I have no problem with bluetooth as an option. Hell, I've added bluetooth to my car.

Using my phone via bluetooth has been great. I have a holder for my phone to display GPS info, google maps ABSOLUTELY DOES show traffic delays (I don't care if it's construction, accidents, or whatever, I only care that it impedes my travel), and most importantly, my car isn't communicating with a WAN outside of my control. And since it's my phone, it still has my "home" address saved (along with any other address I choose to save) the moment I set it up... and if someone else were to steal my car, they won't suddenly also know where I live, work, and anywhere else I visit.

Hell, just give me a 10" screen with HDMI, I'll get a chromecast for my car.