Hackers Find A Way To Disable Airbag Systems in automobiles
The attacks, which were demonstrated to the media using an Audi TT car sold by Volkswagen. However the researchers said any car airbag could be similarly hacked. ย This is because the vulnerability doesnโt exist in VW itself and relates solely to third-party software widely used and compatible with cars sold by the Volkswagen as well as other companies.
The exploit requires hackers to first compromise a mechanicโs diagnostic computer externally, or plug in a malicious USB device. The hack allows intruders to conceal the disabling of airbags from mechanics by falsifying diagnostic read outs from the car.
Buttyรกn says the most recent example of a more dangerous compromise was the recent dramatic remote hacking of Jeep engines which were disabled at high speed, had their brake operating systems seized, and locks popped.
He says the third-party software used in the hack his team demonstrated is widely-used and compatible with cars sold by the Volkswagen Group.
โIt works with other cars in the VW group too without any modification. Anything that can be switched on or off from the diagnostic application could have been switched on or off. After switching off the airbag, we can consistently report to the application that it is still switched on.โ
Buttyรกn says the flaw โhas nothing to do with VW itselfโ but is contained in โthird-party softwareโ.
โIt is not the specific software which makes our work interesting, but the main message that embedded devices are typically managed from PCs and they can be infected and used as stepping stones.โ says Buttyรกn.