Hacker Working With GM To Fix OnStar Vulnerabilities: Video


Connected cars promise better safety and security, but like anything connected to a network, they can be susceptible to attacks from hackers.

And General Motors Company [NYSE:GM] is just the latest automaker in the news due to cyber security concerns.

ALSO SEE: BMW Offers EnLighten App Connectivity To Predict Traffic Signals

Security researcher—or "white hat" hacker—Samy Kamkar has posted a video on YouTube showing him using a device called "OwnStar," which allows an unauthorized user to access some of the functionality of GM's OnStar system.

During the demonstration, he is able to unlock, remote start, and track the vehicle.

Fortunately, driving away isn't on the menu, as the device can't mimic a key fob. Gaining access to the vehicle requires an attacker to be near a user who opens their OnStar app, but the location of the actual vehicle is unimportant.

The video above includes a basic breakdown of how the attack works. 

CHECK OUT: FCA Recalls 1.4M Vehicles In Response To Jeep Cherokee Hack: Video

According to Kamkar, the exploit works indefinitely, and is possible due to a flaw in the mobile software, not the vehicle itself. And while he is set to present his findings during the Def Con hacking conference—scheduled for August 6 through 9 in Las Vegas—he says GM engineers have been proactive in working to solve the problem.   

The news comes on the heels of a Fiat Chrysler Automobiles [NYSE:FCAU] recall of 1.4 million vehicles that was prompted after Wired magazine demonstrated hackers taking control of a 2014 Jeep Cherokee.

And it's only a matter of time before the next vehicle hack is revealed.

_______________________________________

Follow Motor Authority on Facebook, Twitter, and Google+.

 
Follow Us

Take Us With You!

 


 
© 2017 MotorAuthority. All Rights Reserved. MotorAuthority is published by Internet Brands Automotive Group. Stock photography by izmostock. Read our Cookie Policy.