Nissan Leaf Electric Car Vulnerable To Hacking
Troy Hunt reported the flaw after reporting it to Nissan, giving the company a month to fix the issue before making the flaw public. Nissan said it could not yet comment.
Although the problem is not life-threatening, Hunt told BBC News, hackers can still take advantage of the NissanConnect appÂ’s vulnerability to cause mischief by running down peopleÂ’s batteries, the report said.
"The right thing to do at the moment would be for Nissan to turn it off altogether," Hunt told the BBC. “They are going to have to let customers know. And to be honest, a fix would not be hard to do. It's not that they have done authorization [on the app] badly, they just haven't done it at all, which is bizarre."
To confirm the problem existed, Hunt used the VIN number of a Nissan Leaf-owning acquaintance based in the UK, the report said.
"I was sat in the vehicle with everything powered off and didn't have my key on me," recalled Scott Helme, who is also a cybersecurity adviser.
"So, the vehicle was as it would be if it was completely unattended.
"As I was talking to Troy on Skype, he pasted the web address into his browser and then maybe 10 seconds later I heard an internal beep in the car.
Related News
Tracking Progress on 100% Clean Energy Targets
WASHINGTON - “An enormous amount of authority still rests with the states for determining your energy future. So we can build these policies that will become a postcard from the future for the rest of the country,” said David Hochschild, chair of the California Energy Commission, speaking last week at a UCLA summit on state and local progress toward 100 percent clean energy.
According to a new report from the UCLA Luskin Center for Innovation, 13 states, districts and territories, as well as more than 200 cities and counties, have committed to a 100 percent clean electricity target — and dozens…
