Not the same old song: Researcher hacks into car with malware-laced CD

Bradley BarthFebruary 1, 2016

“Baby, you can drive my car.”

A researcherat the University of California, San Diego, claimed to have discovered a way to hackinto a computerized car's operational controls by playing a music CD encodedwith malware on the vehicle's entertainment system.

StephanSavage, Professor of Computer Sciences and head researcher, told attendees at the Usenix Enigma conference in SanFrancisco last week that playing 18 seconds of a .WMA track was all it took totake over the car's systems, according to a reportby TechFrag.

Security experts often warn that entertainment systems and other poorlysecured connected technologies can act as a gateway for hackers to gain access to more criticalvehicular systems.

Bradley Barth

As director of community content at CyberRisk Alliance, Bradley Barth develops content for SC Media online conferences and events, as well as video/multimedia projects. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Vulnerability management

7″ Laptop, Trojans in Chips, Samsung’s Faux Moon, & The 4 C’s – PSW #777

March 22, 2023

In the Security News: Windows MSI tomfoolery, curl turns 8...point owe, who doesn't need a 7" laptop, glitching the ESP, your image really isn't redacted or cropped, brute forcing pins, SSRF and Lightsail, reversing D-Link firmware for the win, ICMP RCE OMG (but not really), update your Pixel and Samsung, hacking ATMs in 2023, breaking down Fortine...

Threat intelligence

Novel malware distribution techniques leveraged by hackers

SC StaffMarch 23, 2023

Numerous file formats are being leveraged by North Korean advanced persistent threat group APT37, also known as Reaper, RedEyes, Scarcruft, and Ricochet Chollima, to facilitate malware distribution efforts, reports The Hacker News.

Malware

Linux SSH servers targeted by novel ShellBot malware variants

SC StaffMarch 22, 2023

Mismanaged Linux SSH servers are being subjected to a new attack campaign involving the distribution of three new strains of the ShellBot DDoS bot malware, including PowerBots GohacK, LiGhT's Modded perlbot v2, and DDoS PBot v2.0, according to The Hacker News.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Not the same old song: Researcher hacks into car with malware-laced CD

Related

7″ Laptop, Trojans in Chips, Samsung’s Faux Moon, & The 4 C’s – PSW #777

Novel malware distribution techniques leveraged by hackers

Linux SSH servers targeted by novel ShellBot malware variants

Related Events

EMOTET Exposed: Inside the Cybercriminals’ Supply Chain

Email Emergency: Steering Clear of Phishing and BEC Scams

Ransomware & Data Exfiltration: A survival guide to prevention & response

Get daily email updates