Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hackers Remotely Cut a Corvette's Brakes

Posted by Soulskill on from the has-no-effect-on-corvette-drivers dept.

An anonymous reader writes: Security researchers presented work at the USENIX conference today showing an easy way to hack into a car's electronics using a small gadget that plugs into modern dashboards. The port they're taking advantage of is commonly used to monitor the location and speeds of these vehicles. Once the researchers' dongle is attached, they can use SMS messages to transmit commands to the car's internal network. They demonstrated this by remotely cutting a Corvette's brakes. "Though the researchers say their Corvette brake tricks only worked at low speeds due to limitations in the automated computer functions of the vehicle, they say they could have easily adapted their attack for practically any other modern vehicle and hijacked other critical components like locks, steering or transmission, too."

15 of 161 comments (clear)

  1. In related news.... by Anonymous Coward · · Score: 5, Funny

    The NSA demonstrated a clever hack where they attached a small device to the underside of a Pontiac Grand Prix, remotely pushed a button, and the car blew up! General Motors says this is not a serious security breach and the vulnerability is not limited to their vehicles. They will not issue a recall.

    1. Re:In related news.... by Penguinisto · · Score: 2

      Well, yes and no.

      In all seriousness, this is no different than a physical breach. If you have the means to bust into the car, you have the means to do whatever the hell you want to it while you're in there. There is honestly not much you can do to prevent it given the architecture of ODB-II (doubly so given the mass of insurance company 'monitor-me-for-a-discount' dongles out there).

      This is no different than sneaking into a server room and plugging a wifi-enabled keylogger into the server's USB port, FFS (and IMHO the server room hack would be just as near-undetectable in most cases, given all those nooks and crannies in and about a server rack - not to mention the sloppiness of most cabling jobs...)

      --
      Quo usque tandem abutere, Nimbus, patientia nostra?
  2. OK, but... by cyn1c77 · · Score: 5, Insightful

    Let's keep this in perspective. If the hack requires you to physically attach dongles to the vehicle, the hacker could just as easily attach a remote controlled bomb.

    1. Re:OK, but... by PRMan · · Score: 2

      But in this case they hacked a popular ODB-II dongle that many car modders already have installed.

      --
      Peter predicted that you would "deliberately forget" creation 2000 years ago...
  3. Misleading Attention Grabbers by monkeyxpress · · Score: 4, Informative

    This is silly. The brake pedal on every car that currently leaves a production line is still physically connected to the master cylinder and wheel callipers. What they likely meant by 'disabled the brakes' is that they disabled the ABS or brake assist module. While troubling, these components are all designed with mechanical overrides for if the electronics goes hey-wire, so this is really scare mongering.

    We have known for years about CAN bus insecurity and how you can control indicators and wipers once you get physical access. There was even a model of car where you could just snap a wing mirror off and plug directly into the CAN system through the exposed mirror connector. These people haven't done anything new and are just being intentionally sensationalist to get attention.

    1. Re:Misleading Attention Grabbers by 0123456 · · Score: 4, Informative

      You realize that ABS cuts the brakes, right? So, if you can take over the ABS controller, you can stop the car from braking?

      There's no way in hell a device attached to the bus connector under the steering wheel should be allowed to do such a thing.

    2. Re:Misleading Attention Grabbers by WoodburyMan · · Score: 2

      Likewise, power steering or power brakes can be disabled via the same method most likely. Especially if they're in electronic parking assist vehicles which typically have electric power steering vs hydraulic. At high speeds power brakes being cut can be dangerous, power steering not so much, more dangerous at lower speeds. This is why I will never buy a keyless entry car, and prefer manual transmissions, and prefer all driving assistance but ABS to be off. I had traction control nearly kill me once when it tried to correct and reduced engine power after I had already corrected myself. That being said as well. Someone could just as easily PHYSICALLY clip your brake lines, and they don't even need access to the inside of the vehicle. Or if you live in the Northern US just drive in the winter for 3-5 years and the new chemical treatment they use on the roads in the winter. Already had two family members vehicles, only 6 years old, have lines MELTED through by this stuff, one went while driving.

    3. Re:Misleading Attention Grabbers by monkeyxpress · · Score: 5, Interesting

      It can't. The ABS module is designed to be mechanically failsafe. Have a look at a design. The system can only modulate the pressure in the brake line. It does not have any ability to vent to the reservoir or lock out the pedal connection (the isolation valve is just for pedal feel). All it can do is dump a tiny amount of fluid into a small internal reservoir and then pump it back into the line. If the system fails, whether due to a stuck valve, electronics going crazy, or just loss of power, the worst you'll get is a pedal that moves a bit further and no ABS. Even if you could flash the firmware in the controller through the CAN bus (which you normally can't) to get full control of all the valves and pumps you can't 'cut the brakes'.

    4. Re:Misleading Attention Grabbers by StefanSavage · · Score: 4, Informative

      Sorry, I have contrary empirical evidence. On multiple different cars we have manipulated appropriate ECUs with the effect that you can push on the brake pedal with no impact on forward velocity (see autosec.org and also the paper this post refers to). I'll personally attest that it is so and that no matter how hard you step on the pedal that nothing is happening wrt braking. I believe that Charlie and Chris also accomplished the same thing with the vehicles they addressed in the first and most recent presentations.

  4. My Battlestar Galactica security plan is working by He+Who+Has+No+Name · · Score: 4, Funny

    ...which basically consists of "drive a '92 Jeep where the only major electronics in the car are my cell phone".

    It doesn't even have power windows.

    Hack that wirelessly, bitches.

  5. Re:We are rapidly getting to a point where it's... by ArhcAngel · · Score: 3, Informative

    Oh, there are people doing it they just have the law on their side.

    --
    "A person is smart. People are dumb, panicky dangerous animals and you know it." - K
  6. Re:You misunderstand. by PAjamian · · Score: 2

    Yep, FedEX vans ... or armoured van fleets?

    A practical application of this for criminals would be to use it to stop and rob an armoured van.

    --
    Windows is a bonfire, Linux is the sun. Linux only looks smaller if you lack perspective.
  7. Re:We are rapidly getting to a point where it's... by tlhIngan · · Score: 2

    It doesn't matter that the argument is that "Without exposure, car companies won't fix it!"... At the moment, no one is actively *doing* this or using this exploit. Simply being told that it's possible should be the limits of what an ethical hacker should release.

    This exploit is unlike the Chevy exploit - in that to remotely use it, you had to get into the car in the first place. Well, if you're already in the car, then all bets are off.

    It's like saying Linux is vulnerable because you can install a keylogger ... by first getting access to the PC. Well, if you have access to the PC already, then installing a keylogger is just one of the many things you can do. Nevermind that software security is bunk once you have physical access.

    Or perhaps houses are vulnerable because you can install all sorts of surveillance equipment in them... once you get inside. You can even install remote controlled lighting to freak out the homeowner.

    Now, maybe the OBD-II dongle is defective, which is a fair point, but it goes less against the car manufacturer and more against the dongle manufacturer for making it so easy to break into.

  8. Re:I know it's not the entire point but... by dunkindave · · Score: 2

    You don't seriously think the handbrake is an "emergency brake", right? Good grief, please be kidding.

    It isn't a handbrake in my vehicle since it is on the floor, and such systems were originally put in place to provide a backup braking system in case the hydraulic system failed, especially since hydraulic braking systems used to be single-cylinder systems and were only mandated to use dual master cylinders starting in 1976. They were later adapted to provide a backup parking brake to supplement the vehicle being left in gear, and are now often also referred to as a parking brake.

    So yes, I think of it as an "emergency brake". But then ideas like yours is why most people never think to use it when their regular brakes fail, just like they don't think to turn off the ignition if the throttle sticks.

  9. More Bullshit "hacking" by Lumpy · · Score: 3, Informative

    Can we stop with these fake "researchers" that make claims that are stupid as hell?

    They did not hack anything, they compromised the car by having physical access and sent service code activation commands.

    Basically if there is a smelly guy wearing a trenchcoat under your dash, you might be hacked.

    --
    Do not look at laser with remaining good eye.