Researchers at the University of California at San Diego have found a way to wirelessly hack thousands of vehicles by exploiting the on-board diagnostics (or OBD) devices that insurance companies use to monitor speed and location. In a video posted to YouTube, they were able to activate the windshield wipers and engage or disengage the brakes of a 2013 model Corvette by sending an SMS message to the OBD dongle’s cellular radio. More details about the vulnerability will be revealed at the Usenix security conference today, according to Wired.
The OBD attack isn’t limited to just Corvettes, or Chevrolets for that matter. The researchers also told Wired that, while they were only able to tamper with the Corvette’s braking system at low speeds, the hack could be modified to grant access to other systems like the locks, steering, and transmission of most modern vehicles.
THE HACK COULD BE MODIFIED TO ACCESS MOST MODERN VEHICLES
The specific dongle in question is made by French company Mobile Devices and distributed by a San Francisco insurance startup called Metromile, the latter of which has a partnership with Uber. The researchers say they alerted Metromile to the vulnerability in June, and the company responded by wirelessly pushing security updates to the devices in question (including the ones in various Uber vehicles)