Monday, October 26, 2015

Can they hack your car and also introduce a virus?

Imagine you bring the car to the mechanic and, when he plugs it into the computer to diagnostic it... the car transmits a virus to the computer. Is this scenario possible? Three researchers from the Budapest University have proved that’s possible. We'll talk about it, as well as the security in the Blackberry Androids, news in the data robbery to TalkTalk and a proposed law in Germany to finally allow the telecoms to retain the data of their customers.

András Szijj, Levente Buttyán and Zsolt Szalay have published a study where they explain how it would be possible not only to hack cars remotely, something that is a recurrent topic since the summer, but also to introduce a virus that could, for example, change the configuration of the Airbags through man-in-the-middle attacks.

BlackBerry and its Android

And if the security of cars frightens us, the security of the smartphones is even more terrific, perfect on the other hand to prepare us for Halloween: we have not enough space to tell you all the news about INsecurity in smartphones which we've read this morning, since 18.000 malicious Android apps detected in China until the first security failure in Ubuntu Phone. Meanwhile, in BlackBerry are working in what seems impposible: making a safe Android for their future smartphone Priv.

Blackmail to TalkTalk

Today we also have to mention the echoes of the last great data robbery, in the Britain ISP TalkTalk, which would have affected 4 million people and where the most sensible data wouldn’t have been ciphered by the company. By the way, it argues that they don’t have to protect this data, because no law forces them. Today we know that the criminals are blackmailing TalkTalk: they ask for 112.000€ in exchange of not publishing the stolen data. Additionaly, everybody is trying to get the hack authorship, since Lulzsec until an “Islamic Russian Group”.

Data retention in Germany

We finish with a curiosity we didn’t know: in Germany there’s no law for metadata retention from the telecommunications users. They tried to apply it in 2007 but the proposition was taken down by the German constitutional court. Now they try again: they propose to save the data for 10 weeks, ciphered, in tight servers; to access them, two authorized person must be there. We’ll see how it ends.

And this was our daily summary. We wish our readers they have, or have had, (depending on the hour they read us) a happy start of weekend.


Post a Comment