Vulnerability in Nissan app opens Leaf to remote hacking
It’s never a good thing to hear when cars are something you can hack into. And while this news about the Nissan Leaf doesn’t particularly target safety of the vehicle, it can still drain the battery of the EV. Security research Troy Hunt uncovered the truth that a vulnerability in the companion mobile app of the Leaf can leave the air conditioner and heater open to hackers. An attendee of a hacking workshop discovered that he could connect to his Leaf vehicle over the Internet and control some features and he could do so with Leaf vehicles that he didn’t own. It was described that he could do it “literally from the other end of the earth.”
Hunt sent the information to Nissan on January 23 and as of February 12, Nissan is said to be “making progress toward a solution.” Hunt commends Nissan for being receptive toward talking about the issue and are working on it. “They were receptive and whilst I obviously would have liked to see this rectified quickly, compared to most ethical disclosure security researchers have, Nissan was exemplary.” Nissan won’t give a specific timeframe yet for the solution to this issue.
Source: SlashGear
Reader Comments