Slashdot Mirror
Rookie Dongle Warns Parents When Their Kids Are Driving Too Fast (thestack.com)
An anonymous reader writes: Dongle Apps, a Belgian tech company, has introduced a new system which alerts a car owner if the vehicle's driver is breaking the speed limit. Initially designed for parents and guardians to keep an eye on their young ones behind the wheel, the 'Rookie Dongle', connects to the vehicle's on-board diagnostics (OBD II) port, internal GPS and mobile technologies to push real-time data to the cloud and send notifications to car owners via email or text when the driver is speeding, suddenly accelerates, brakes hard or has high RPM levels.
They keep saying submitted by "anonymous" and include a link in the title bar to the front page of the site that is hosting the article. Bullshit detector is going off full blast right now.
Swap it to the parent's car in their OBD II port.
You were mistaken. Which is odd, since memory shouldn't be a problem for you
If the kids moved it to the parents cars, the parents would be livid with their kids over their horrible driving.
Learn to love Alaska
Fifteen years ago! The Autowatch a.k.a. "Narc on Lisa"
https://news.google.com/newspa...
Slashvertisement?
Telling me something useful such as when the driver is tailgating, texting, not using turn signals, running lights and things that actually cause dangerous conditions while driving opposed to non-excessive speeding, which in no way directly causes an unsafe condition by itself.
Businesses have used these things for years, especially for heavy trucks but my company sedan has one. My company gets a healthy break on insurance rates because it's there, and they get a nifty web interface where they can pull up everyone's real-time location. Some people find it intrusive but it's kind of hard to complain since it's their car and they pay for the gas. The reporting does include sketchy errors, so it's best not to trust the warning reports too much unless there's a clear pattern. It doesn't always know the real speed limit and sometimes the GPS thinks you're in a very different place than you really are.
Brackets contain world's first nanosig, highly magnified:[.]
Sounds like something the government will mandate soon, and the data will also be sent to your local police department. :(
Let's condition our kids to expect systemic surveillance from early on, and teach them about trust by demonstrating a complete lack of it ourselves.
irate parent calls speeding teenager on their cell phone who then gets in a wreck while on the phone. such a wonderful idea for sure. and hasn't ford or someone already built this shit into the car itself anyway? and what about phones (there is an app for that)? a teenager may hop in someone else's speeding car.. rendering this device useless (moreso than it was to begin with) in their own car.. but they'll never go without their phone.
Why not just remove the dongle and stick on an OBDII simulator or someone else's car?
Insurance companies would want this data in order to better classify the risk of drivers.
What insurance companies want, they inevitably get.
How about an app on a cellphone that emails the teen's* guardian whenever the cellphone senses that it is moving too fast (or accelerating too quickly) for safety. No cloud required. Also, no connection to a single car means that the app can report when a teen is in a potentially unsafe situation regardless of the vehicle used.
* I use "teen" as an example, but would work for any person including seniors.
and insurance companies
Plural? Not until Progressive's patent on using OBD-II telemetry to set insurance rates expires.
Ya know, looking @ the bigger picture,, There must be a reason why automakers dont incorporate this in their vehicles now.. Privacy issues? Whats next?? Uber took over the taxi cab end Will this do away with the need to "tail" some one from a law enforcement perspective? What can be done to secure the tech, for example. If it some how got out that 95% of the people to whom this tech is deployed to are 20 and younger, how can the company secure that data from lets say pedophiles, or predators?? going back to the Gov't how can we secure them from leveraging some legal crap to compel the company to turn over your records so the Gov 't agency for some sort of analysis and or citizen spying? If you look @ the website, there are some areas that aren't even finished or accessable such as the "support/FAQ" Page..
A good idea detector that connects to these inventors nutsacks?
Take the dongle out and stick it into grandmas car!!
it's not a bad idea, in and of its purest form - and, yes, could be applied to older drivers (who continue to buzz right on through stopsigns while talking on their cells, when i have the right-of-way - yes, it pisses me off, and i've had much closer calls with such idiots who never even saw the red light in front of them).
BUT, this is where we enact laws that restricts its usage to only so many lawful information domains... and we only get to enact those laws through representatives of OUR OWN, instead of the corporations who benefit from bending those laws to more their favor than ours.
and these laws must enact prison sentances instead of fines.
you wanna fight the corps here, instead of the govt. it is one of those ideas that, on first thought, is going to sell to any parent, anywhere... "my insurance company can track my kid; why can't i?"
and it's tough to lead any parent like that (who still files them as a "dependant") to any secondary, constitutional-level thought about it. just the plain facts.
make a law, and outlaw it.
and send any fm-er's to prison... same as any other federal-law convict.
What will be reported as speeding? Exceeding the speed limit in short bursts is necessary (and legal) if you are overtaking slower-moving vehicles.
The OBD-II port allows access to the life-safety systems of the car. It is a private unsecured network that performs no authentication.
These dongles allow arbitrary access to the car bus, limited only by their buggy software. They shouldn't even be manufactured.
ODB II isn't concerned with computer security, DRM etc. I believe?
I expect it was done in the era or mindset of micro-controllers that don't run an operating system and free-for-all bit banging like you're running DOS, Win9x or an 8bit computer.
So, put a dongle on a dongle and cap the readings i.e. you might go at 4000 rpm but the stupid thing is told you never go above 3000 rpm.
Only problem is with speeds calculated using GPS positions. Well perhaps jam it and stop jamming after you've been stopped for a little while.
that thing that's legally obligated to be under steering wheel? I can't see this ever getting 'accidentally' disconnected by my teenage self.
An argument starter.
heh, heh. he said dongle.
a buddy of mine did long hauling. They had this stuff, but they couldn't have been using it. Every driver cheated their logs (buddy didn't, they eventually got fired for it cause he couldn't do his runs fast enough). I always wonder how they avoid getting called out when the data's there. I do know that they tell the companies in advance when (and who) is gonna get reviewed for compliance this month. But why not just check the entire companies' logs? They can't be doing it since every truck company in America would shut down.
Hi! I make Firefox Plug-ins. Check 'em out @ https://addons.mozilla.org/en-US/firefox/addon/youtube-mp3-podcaster/
How will it know the current speed limit? Obviously the car is only speeding if the current speed is exceeding the speed limit, but not all roads have the same limit. Some university in Sweden tried making a speed limit map and then made a car use GPS to figure out the speed limit and they ended up scrapping the system because it incorrectly claimed speeding despite no errors in the speed map. It was like driving 100 km/h and then go under a bridge with 50 km/h limit and suddenly the car wanted to drive 50. Their plan was to allow the car to activate the brakes automatically in case of speeding, but that would be dangerous with all the false readings.
The article mentions the ability to send the driving data to an insurance company, which in turn should make it cheaper if the car drives carefully. It sucks to pay extra to the insurance for false readings. My car drive on the front axle as well as measure speed on those wheels. This mean if I drive on the road during winter and there is a bit of snow, it drives fine right until there is ice underneath the snow (invisible due to the snow). Instantly the car speedometer shows 3 times faster driving due to wheelslip and even though the cluth fixes the problem quickly, it still goes into overspeed for a second or two. I kind of like the speedometer telling me what the wheels are doing (not that I don't notice without it), but I don't like those false readings to be transmitted as real readings.
The OBD-II port allows access to the life-safety systems of the car. It is a private unsecured network that performs no authentication.
These dongles allow arbitrary access to the car bus, limited only by their buggy software. They shouldn't even be manufactured.
You are wrong. On the internet. Shame, shame.
Arbitrary access to the car bus is provided by the port that you plug this device into. The device listens to that bus and takes actions outside of the car network. Arbitrary access to the car network existed already.
Also, the only part of the "life-safety" system you can access is the airbag status. The "life" and "safety" things in the car computers are the airbags and brakes. Those both have their own isolated subsystems. You cannot mess up the "life-safety" systems in the car through the ODB-II port, you can only read the status. The things you could change, if a device changed operating mode to the diagnostic mode, are just things that would make your car run like crap, or shut off. Yeah, if you plug this thing into your car, and the software gets cracked, trolls could disable your vehicle. Why should manufacturing stop? If your doorknob was built with a lock that some people could pick, bad people could steal from you. Does that mean that locks shouldn't be manufactured? No, it means you have to choose what product to use, and some people will make poor choices.
My car is old, a 2000, but even with the car off and the main computer without power, the traction computer is still on and functioning. The anti-lock brakes are on the same computer as the anti-roll parking mode, and the traction assist for ice and snow. I could totally fry the main computer that connects to the ODB-II port, and I'd still have traction control. And if the vehicle is in gear and moving, I'd still have power assist to the brakes even if the engine had stopped firing because of a computer problem.
Look at the Millennials at how screwed up they are. Helicopter parenting did that. Don't do it.
speed limit in that area where is that getting that info from and how up to day is it? also what about areas well known for under posted speed limits that even the cops give big leeway in?
What about school zones does system flag then as being on 24/7?
Even better when the parents get the notification I'll bet that their first inclination will be to phone their child to tell them to stop. Then instead of having a teenager who's just speeding you'll now have one who is speeding while on a mobile and arguing with their parents!
Mom suddenly calling while they are driving and yelling hystericly at them because of hig revs or taking corners too fast. nu-uh. pick up the phone and answer. best idea ever. /r/watchpeopledie is going to have a field day!
Buy yours today! The new FireCan ODB-II port firewall.
Allows 'read only' access to the car systems.
Hey, the real Joe_Dragon's back!
"You'r always late coming to see me. Put your foot down, I can see you're only doing 70".
Rookie Dongle Warns Parents When Their Kids Are Driving Too Fast
Poor guy. I mean, bad enough that your parents are Mr and Mrs Dongle, but then they name you "Rookie"? He should sue.
systemd is Roko's Basilisk.
The OBD-II port allows access to the life-safety systems of the car. It is a private unsecured network that performs no authentication.
These dongles allow arbitrary access to the car bus, limited only by their buggy software. They shouldn't even be manufactured.
I'm sure that car manufacturers would agree with you as this would then make third party products (including diagnostic tools), 'unlicensed' (by the manufacturer) mechanic work (including do it yourself) and so forth difficult to impossible resulting in even higher manufacturer prices for the same thing.
So no, I'll keep that open port open, thanks just the same.
blindly antisocialist = antisocial
"connects to the vehicle's on-board diagnostics (OBD II) port, internal GPS and mobile technologies to push real-time data to the cloud and send notifications to car owners via email or text when the driver is speeding, suddenly accelerates, brakes hard or has high RPM levels."
I would add a "the damn kid pulled the dongle' event to the list.
Funny how Helicopter Parents are so concerned about nearly every facet of their snowflakes' lives... but don't give a flying fuck about their rights and privacies.
Kudos for leaping forward a more pervasive police state, you twisted egomaniacs.
You are wrong. On the internet. Shame, shame.
Pot meet kettle?
Arbitrary access to the car bus is provided by the port that you plug this device into. The device listens to that bus and takes actions outside of the car network. Arbitrary access to the car network existed already.
This 'arbitrary access' you refer to is only available to someone who has physical access to the CANBus to begin with. And when has anyone ever claimed that you could prevent a network from being owned when someone has physical access to it? These devices put that air gapped network ONTO the internet. Sure you could buy a car with OnStar and achieve the same thing, but many people are smart enough to avoid OnStar vehicles.
Also, the only part of the "life-safety" system you can access is the airbag status. The "life" and "safety" things in the car computers are the airbags and brakes. Those both have their own isolated subsystems. You cannot mess up the "life-safety" systems in the car through the ODB-II port, you can only read the status.
This is not true either. Just a few months ago black hats demonstrated the ability to control the ABS systems of cars, kill the engine while they are traveling at high rates of speed, and more. Less than a year ago I had a meeting with a major car manufacturer to discuss Android Auto and CarPlay with the engineers working to integrate it into their vehicles. With the prototypes I saw, you could start/stop the car and affect many other systems directly through the Manufacturer's own app. This app keeps you in their nice little playground. You could do a lot more if you escape their jail.
The things you could change, if a device changed operating mode to the diagnostic mode, are just things that would make your car run like crap, or shut off.
Having your car shut off at just the wrong moment could result in your death. And as I mentioned before it has already been established that ABS systems are vulnerable to tampering. So now you could have someone kill your engine and your brakes at just the right time to result in a fatal crash.
Yeah, if you plug this thing into your car, and the software gets cracked, trolls could disable your vehicle. Why should manufacturing stop? If your doorknob was built with a lock that some people could pick, bad people could steal from you. Does that mean that locks shouldn't be manufactured? No, it means you have to choose what product to use, and some people will make poor choices.
The CANBus was never designed to be exposed to attack like this. You're willing to have people in 2500+ pound vehicles flying down the road with script kiddies attacking their cars? And for what gain? So insurance companies can track your speed and position? So that you can have some company babysit your kid so you don't have to actually be a parent? So you can stalk your ex girlfriend? The risk to society far outweighs the benefit to society which, from my perspective is absolutely zero.
My car is old, a 2000, but even with the car off and the main computer without power, the traction computer is still on and functioning. The anti-lock brakes are on the same computer as the anti-roll parking mode, and the traction assist for ice and snow. I could totally fry the main computer that connects to the ODB-II port, and I'd still have traction control. And if the vehicle is in gear and moving, I'd still have power assist to the brakes even if the engine had stopped firing because of a computer problem.
Your car may not be as vulnerable as other cars but that doesn't mean that we should open up the car's network to the whole world for no reason. Let's look at your argument about door locks. Let's consider the fact that the network is NOT on the internet to be one of the locks securing it. Are you suggesting we should just remove this lock because someone could
You're wrong on pretty much every account. If you'd ready any fairly recent slash.
Also, the only part of the "life-safety" system you can access is the airbag status.
Sure, because you just don't know the proprietary ODB codes the manufacture uses to control devices for test purposes. Other people do, you can buy them from the manufacture.
Those both have their own isolated subsystems.
Sure, but they are connected and communicate, and due to the lack of decent coders who think about these things, we've repeatedly seen how exploitable these networks are, unless you live under a rock.
You cannot mess up the "life-safety" systems in the car through the ODB-II port, you can only read the status.
A simple Google search will show many demonstrations of exactly how wrong you are.
The things you could change, if a device changed operating mode to the diagnostic mode, are just things that would make your car run like crap, or shut off
... No, just resetting the mixture settings, which is what you're referring to, its the only thing that can be done. ODB-II handles all sorts of shit you're completely unaware of apparently. There are commands required to be common to all cars by the government, those don't do much other than read emissions data. Thats what you're talking about. The are generally several times MORE proprietary codes that the manufacture uses. These are the dangerous ones and I promise you, you're car has them even if you don't realize it.
. Yeah, if you plug this thing into your car, and the software gets cracked, trolls could disable your vehicle. Why should manufacturing stop? If your doorknob was built with a lock that some people could pick, bad people could steal from you. Does that mean that locks shouldn't be manufactured? No, it means you have to choose what product to use, and some people will make poor choices.
Other than you're completely wrong as has been proven and posted here on slashdot on multiple occasions, there is also the fact that this is essentially indoctrinating kids into accepting that someone watching our every move and profiting from it is totally acceptable.
My car is old, a 2000, but even with the car off and the main computer without power, the traction computer is still on and functioning. The anti-lock brakes are on the same computer as the anti-roll parking mode, and the traction assist for ice and snow. I could totally fry the main computer that connects to the ODB-II port, and I'd still have traction control.
Not really, believe it or not traction control requires both braking AND powering the wheels appropriately. So no, you don't have traction control without the engine running.
And if the vehicle is in gear and moving, I'd still have power assist to the brakes even if the engine had stopped firing because of a computer problem
Assuming that someone hasn't simply hacked and disabled those systems via the ODB-II port that you seem to think has this magic firewall that no one could possibly ever break. And to go ahead and clear up some more confusion. That computer is still own because the vehicle control module told it to stay on for a few minutes after the main power is shut down. When communications with the main computer go down ... I'll give you a guess as to what happens ... Hint: its not function as if nothing were wrong.
So before you start telling people they are wrong on the Internet, get a clue.
Ask Chrysler about it, they'd love to sell you a car since you'd never believe they've been owned in multiple ways just recently.
Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
The OBD-II port allows access to the life-safety systems of the car. It is a private unsecured network that performs no authentication.
These dongles allow arbitrary access to the car bus, limited only by their buggy software. They shouldn't even be manufactured.
I'm sure that car manufacturers would agree with you as this would then make third party products (including diagnostic tools), 'unlicensed' (by the manufacturer) mechanic work (including do it yourself) and so forth difficult to impossible resulting in even higher manufacturer prices for the same thing.
So no, I'll keep that open port open, thanks just the same.
No one is trying to suggest that the OBD port should go away. In fact, US law requires its existence. Go try and hook a 1995 or older car to a diagnostic code reader. You'll find you need manufacturer specific info and hardware to get anywhere. The GP is saying that we should not be putting these devices on the internet. We shouldn't be creating devices whose sole purpose is to track and monitor everyday citizens as they go about their lives./P.
What we really want to know...
The Wikipedia article about car insurers using OBD-II data lists a few:
Am I glad that this cruft wasn't available when I was a teenager! "What, Bill was going HOW FAST?" Heck, even today, NOBODY obeys the speed limit. Around Chicago, most people go 80 in a 55 limit area. On the thruways outside of the city, you will get rear-ended if you are only going 80!
Asserting I don't know things is an argument you lost as soon as you made it. You don't know what I do or don't know.
Presume I do know about proprietary codes. Could my statements still be true? Yes. Indeed. As a programmer who has works with these codes, I know it is complete hogwash to just wave your hands like that. Could a malicious person screw up your car through the OBD port? Yes. Can they screw with the safety systems? No. I'm sure there are ways they could cause you lots of problems, but your brakes and airbags will still be working.
You don't seem to realize that the brake and airbag computers are physically separate devices. It doesn't help your position to just presume that the proprietary codes can alter those systems. If you were more familiar with the technology, you'd understand that all the active diagnostics are in the Engine Control Module and Powertrain Control Module, which are probably the same physical device, and that device can't actuate the brake or airbag systems; all that plugs into it is the sensors to tell it when the ABS or traction control engages, and a flag that says the airbag state.
And no, traction control does NOT involve powering the wheels. If you're in gear, the engine has to change speed for a different amount of power to get delivered to the wheels. There is nothing in the wheel that has any sort of gearing that would allow for the traction computer to change the wheel power delivery separately from the engine, and the engine responds much more slowly than the traction system. And the traction computer is still running with the ECM unplugged. I could go to the top of a hill, unplug the ECM, and as long as the battery is connected I could roll down the hill and slam on the brakes, and the ABS would work perfectly. The same computer does the parking anti-roll.
The idea that the ECM could actually turn off the brake power is funny. For bonus points, find a repair manual for your vehicle, discover where in the engine the power brake boost is sourced, and then ask yourself if it makes sense that it could be disabled while the vehicle is in gear and moving. I'll give you a hint: http://auto.howstuffworks.com/...
It uses engine vacuum. Power brakes have mechanical assist. If the engine is in gear and the vehicle is moving, there will be power brakes, even with the battery disconnected. If you have an electronic brake-assist computer, you can lose that if the battery is disconnected, but the ECM can't disconnect the battery. But even if it could take that extreme step, you'd still have power brakes anytime you're in gear and moving.
I did not say anything about firewalls, so I'll assume the whole passage accusing me of believing in magic ones was just a fantasy interlude, except to reiterate that the brakes and airbags are NOT controlled by the ECM computer that is the one that shuts down a couple minutes after you turn off the car.
get a clue.
The one thing we agree on.
You claim a bunch of specific facts that if true, would support your arguments. However, they're false. All the ECM gets from the brakes and airbags are sensor readings. There are no actuators connected between the safety systems and the engine computer.
I do apologize for the typo where I wrote ODB instead of OBD.
This is true via the ODB protocol, however almost all cars provide the CAN bus on the same connector (this is optional, in theory). Over the CAN bus you can certainly do very bad things.
And as I mentioned before it has already been established that ABS systems are vulnerable to tampering
You're just waving assertions in the air. Was there a slashdot story a couple months ago, yeah, and it actually talked about a non-OBD thing, some new remote exploit tool that the some automakers are putting in. Who knows what it does, or what computers it hooks into. I didn't, and wouldn't, make any claims about what some car functions a non-OBD access method provides. That also goes for your CarPlay and Android Auto crap.
Hybrids are a special case, and I'll grant that hybrid systems can often have the brakes affected by hacks. The reason is that they use regenerative braking. The main computer has to be able to switch between the real brakes and the regenerative engine braking. The NTSB has yet to wise up to the fact that the brake computer should still be in charge of the brakes 100% of the time, and should be raising a flag to the powertrain module to tell it when to engage the engine brake.
The biggest danger I can see from these dongles is that they might get hacked and start playing advertising, distracting drivers and killing people. And yeah, a malicious hacker could kill somebody while they're driving without altering the vehicle safety systems. I think people are mostly arguing against something totally different than what I actually said, because I didn't align my specific statements with the conclusions people are coming to, and they're wanting to work backwards to say I'm wrong about everything, because I'm not supporting (or contradicting, for that matter) their conclusions about the safety of plugging random dongles into their car. If it helps people resolve their cognitive dissonance I'll point out that plugging shit into your car is stupid. Hell, connecting your cell phone to the bluetooth car stereo is probably stupid if it is a stock stereo. If it is an aftermarket stereo it is most likely safe. But that said, unless you have a hybrid there is no way to turn off your brakes from your stereo.
Preemptively, the Chrysler brake hack was done using a manufacturer remote access tool, not an OBD tool.
Let's look at your argument about door locks. Let's consider the fact that the network is NOT on the internet to be one of the locks securing it. Are you suggesting we should just remove this lock because someone could physically modify the computers on your car?
No. I don't even know what that means. My point about locks was that just because the lock can be picked, doesn't mean that your refrigerator has coodies. Plugging shit into your OBD is probably going to cause some cracker to fuck up your car, but that doesn't mean your ABS system is going to stop working. (unless you have a hybrid) If they're going to kill you with it, it won't be by disabling your safety systems. It will more likely be by activating the engine at an inconvenient time. I'm not saying nobody can hack your shit, I'm saying on a normal internal combustion car nobody can mess with the traction control or airbags, aka "safety systems," from the OBD port, because the OBD port only connects to the main computer, and the main computer only has passive sensor connections to the brake and airbag systems.
The fact that people jump up and down disagreeing not only with my conclusions, but all the specific points, merely because they disagree with the conclusion, is telling about the quality of discourse around here these days.
If I plug a shop diagnostics computer in, I can control the engine from there. Lights, horn, etc. But there are a few things I can't do; actuate the brakes, change the key position to "on," activate the airbags. Everything but the safety systems. And if you have "keyless" starting, then that part is not safe; they might turn your car on from there. And drive it a few feet. But don't worry, the airbag will deploy if you don't get to the brake pedal in time.
If you could activate the brakes from the OBD
It sounds like your experience is limited to consumer code readers, so you think the OBD-II port is limited to some sort of unidirectional diagnostics interface. That is totally incorrect.
The OBD-II port on anything modern allows bidirectional access to the CANbus which can be very dangerous indeed.
The dongle takes an air-gapped insecure network and sticks it on the global internet. That's worlds apart from your pedantic lock pick example.
And as I mentioned before it has already been established that ABS systems are vulnerable to tampering
You're just waving assertions in the air. Was there a slashdot story a couple months ago, yeah, and it actually talked about a non-OBD thing, some new remote exploit tool that the some automakers are putting in. Who knows what it does, or what computers it hooks into. I didn't, and wouldn't, make any claims about what some car functions a non-OBD access method provides. That also goes for your CarPlay and Android Auto crap.
Hybrids are a special case, and I'll grant that hybrid systems can often have the brakes affected by hacks. The reason is that they use regenerative braking. The main computer has to be able to switch between the real brakes and the regenerative engine braking. The NTSB has yet to wise up to the fact that the brake computer should still be in charge of the brakes 100% of the time, and should be raising a flag to the powertrain module to tell it when to engage the engine brake.
The biggest danger I can see from these dongles is that they might get hacked and start playing advertising, distracting drivers and killing people. And yeah, a malicious hacker could kill somebody while they're driving without altering the vehicle safety systems. I think people are mostly arguing against something totally different than what I actually said, because I didn't align my specific statements with the conclusions people are coming to, and they're wanting to work backwards to say I'm wrong about everything, because I'm not supporting (or contradicting, for that matter) their conclusions about the safety of plugging random dongles into their car. If it helps people resolve their cognitive dissonance I'll point out that plugging shit into your car is stupid. Hell, connecting your cell phone to the bluetooth car stereo is probably stupid if it is a stock stereo. If it is an aftermarket stereo it is most likely safe. But that said, unless you have a hybrid there is no way to turn off your brakes from your stereo.
Preemptively, the Chrysler brake hack was done using a manufacturer remote access tool, not an OBD tool.
And do you know why they didn't bother using an OBD dongle for this hack? Because they didn't need to! The car manufacturer was already putting the CANBus. They didn't bother with an OBD dongle because the surface area is larger on the manufacturer provided access point. The OBD port puts you on the CANBus. Anything you can do from the Infotainment system on the CANBus you can do from the OBD port. Will you have to have knowledge about the specific vehicle you're attacking from OBD? Almost certainly. But you can get all of the info you need right off the dongle when you instigate the attack.