“As Wired explains, the flaw that would allow anyone to zap your car over a local wifi network first requires a physical component: you, or someone else, has to put a cheap, widely-available gadget in the vehicle first. That’s the good news. Here’s the bad: plenty of drivers are signing up to put those gadgets in their vehicles already. And the worse: the attack could also work on “practically any other modern vehicle.”
The gadget is a 2-inch-square dongle that insurance companies and trucking fleets plug into vehicles to monitor their location, speed, and efficiency. The security researchers demonstrated that those dongles can be vulnerable to a “carefully-crafted SMS message.” Those messages can be used to transmit commands to the car’s internal network, the CAN bus that controls major vehicle functions.
In their demonstration, the researchers turned the windshield wipers on and off and also, more worryingly, both activated and cut the brakes. They added that the brake tricks only work at low speeds due to safety features built into the car’s computer, but that they could also hijack critical features like locks, steering, and transmission.
As with other demonstrated security flaws, the problem is far larger than just one device. In other words, unsafe, exploitable devices are already out there, and will be everywhere soon. It’s just one more avenue where every consumer needs to be aware of the risk, and where every company needs to do everything it can to make sure its bases are covered.”
Can’t stop you from reading the article at consumerist.com.