Slashdot Mirror

← Back to Stories (view on slashdot.org)

Many Lexus Navigation Systems Bricked By Over-The-Air Software Update (theverge.com)

Posted by BeauHD on from the try-turning-it-off-and-on-again dept.

An anonymous reader quotes a report from The Verge: An unknown number of Lexus automobiles have seen their infotainment and navigation head units broken by a bug in an over-the-air software update from Lexus. The glitch, which was confirmed by a Lexus spokesperson, was delivered in a routine software update. In affected cars, it can cause the dashboard screen to spontaneously reset itself and, as a result, both the radio and navigation system can be unusable. It affects cars equipped with Lexus' Enform system with navigation. Lexus social media channels have been flooded by frustrated owners, but the company has been unable to give any estimates for when the problem will be resolved. The company also couldn't say whether customers will see the problem fix itself with another software update or if they will need to head into dealers to get it fixed. Some users on Twitter have reported success with disconnecting their battery for a few moments to force a reset of the system.

2 of 110 comments (clear)

  1. Obligatory nitpick by Yosho · · Score: 5, Insightful

    The company also couldn't say whether customers will see the problem fix itself with another software update or if they will need to head into dealers to get it fixed. Some users on Twitter have reported success with disconnecting their battery for a few moments to force a reset of the system.

    If a reset of the system can fix the problem, it's not bricked. If a software update can fix it, it's also not bricked.

    "Bricked" means it is completely unrepairable and useless as anything other than a brick.

    --
    Karma: Terrifying (mostly affected by atrocities you've committed)
  2. Car manufacturers don't understant InfoSec by sinij · · Score: 5, Insightful

    Car manufacturers do not understand InfoSec and should not be networking cars. It is only matter of short time until someone reverse-engineers update mechanism, inevitably discovering that they did not implement code signing and integrity checking, craft malicious update and bricks (or worse) cars equipped with such functionality.

    More so, in 15 years your networked car could still be on the road. Even if 2015 best-practices are followed, by 2030 how resistant do you think such over-the-air update functionality going to be to, for example, quantum-capable attackers?