It’s unlikely but possible for an over the airway connection to actually be inhe...

compiler-guy · on Oct 12, 2020

That sort of system is totally _possible_, but not the way any modern automotive connectivity works.

outworlder · on Oct 12, 2020

Modern automotive connectivity is via the CAN bus. It is not a given that the system that's internet connected is even able to talk to the CAN bus.

novok · on Oct 12, 2020

Most are. GM OnStar systems & Tesla I know for sure are designed in a way that a malicious hack of HQ computers + research into car firmware could lead to a push that would kill potentially millions of people simultaneously. If I really dived into the others, I wouldn't be surprised if ford, VW, toyota and others had similar system design issues.

We are just lucky we live in a world where even 'hackers' don't go that low. I hope future regulation will mandate remote access airgaps. I don't think it's a big price to pay for non-entertainment / GPS software updates to require a physical connection

tatersolid · on Oct 13, 2020

> We are just lucky we live in a world where even 'hackers' don't go that low.

Unfortunately they do go that low. There have been multiple murders committed by ransomware gangs attacking European and US hospitals in recent months. Example: https://arstechnica.com/information-technology/2020/09/patie...

novok · on Oct 13, 2020

That's more spray and pray damage then a specific hack on hospitals.

tatersolid · on Oct 14, 2020

Modern ransomware attacks do recon and exfiltration for weeks or months before pulling the encryption trigger.

The attackers knew it was a hospital network and clearly didn’t care that people would die.

Dylan16807 · on Oct 12, 2020

How's it going to unlock the car if it's not talking to the important parts?

Sure someone could make a dedicated secure unlock wire or something, but they don't.