BMW-car-computer-systems were found to contain 14 different errors, according to a study by a Chinese cyber-security lab.
You could, in theory, allow a Hacker to take at least partial control of the affected vehicles, while in use.
The researchers identified opportunities for the compromise of the car by plugging-in an infected USB-sticks, as well as contactless, including the Bluetooth and the vehicles of their own 3G /4G data connections.
BMW is working on Updates.
His customers were advised, keep an eye out for software updates, and other counter-measures by the German society in the coming months.
Keen Lab – a division of Chinese technology giant Tencent – began its investigation in January 2017, and shared his findings with BMW just over a year later.
He said the vulnerabilities were found, mostly in three different parts of the cars’ electronics:
the internet-connected infotainment systems – Navi-management, radio-channel playback, Auto-diagnosis information, and in some cases, voice-recognition-services
the telematics control unit – the electronics and software with which the location of a vehicle can be recorded
the Central gateway module – the information the bridge that controls the flow of data between the vehicle and the various electrical components
The researchers hold back their full results until 2019, giving the BMW more time to deal with the problems.
But you describe a scenario in which a rouge mobile data, could the transmitter be used to vulnerabilities in the infotainment and telematics parts.
“Technically, it is possible to start the attack of hundreds of meters, even if the car is in travel-mode,” she wrote, adding that the attacker could then create “back doors” to inject diagnostics messages, which could, in turn, control the influence on the driver.
BMW display ‘promoted in a manner dangerous driving’
BMW recalls 300,000 cars over stalling risk
Could a hacker control of your car?
Several models of BMW were affected cars, including at least some of the i, X, 3, 5 and 7 series designs.
BMW has checked the reported vulnerabilities and excellent Sharp-lab “IT research” – the price at the beginning of this week for his work.
“We work closely to understand with Tencent for months and to address cyber-security issues,” said a spokesman for the car manufacturer.
“It was a cooperative relationship, and is important, as this type of security is now a Central issue for the manufacturer.”
An independent expert said, was welcome this approach.
“Modern cars have an extraordinary amount of software, the essential systems as well as infotainment systems,” said Professor Alan Woodward from the University of Surrey.
“It is not surprising that researchers pay special attention to such systems, that you can find errors.
“BMW is not the first nor will he be the last, has the manufacturers fault in their cars.”