Volkswagen drivers are facing another issue with their vehicles as, not only has Volkswagen left its ignition vulnerable, but researchers have discovered that the keyless entry system that unlocks the vehicle’s doors can also be hacked, affecting all cars sold since 1995. Rob Miller, Head of Operational Technology at MWR commented below.
Rob Miller, Head of Operational Technology at MWR:
“Volkswagen is clearly aware of what this research means for its customers’ security, and are taking steps to make sure that this information does not fall into the wrong hands. This is a common theme we have seen with several organisations where security flaws have been found in embedded systems. The issue is that, unlike in software where you can simply download a newer version, embedded systems often do not offer such connectivity and fixing requires recalls. In some cases the hardware design is the culprit in causing security issues and the resultant redesign, testing and release to address the problem can take many months.
“The car industry, and others producing equipment that consumers rely on for security, should take this research as a shot across the bows. Attacks will constantly evolve as new methods and technology become available to researchers and criminals. We need to consider not only how we are preventing the latest attacks, but how we can design systems so that we can quickly respond and adapt to new threats.”