![\"\"](\"https:\/\/wpsites.ucalgary.ca\/isec-601-f21\/wp-content\/uploads\/sites\/115\/2022\/04\/GM-EVgo-charger-1200px-1-1024x576.jpg\")
<\/figure>\n\n\n\nResearchers from Oxford University have found a new vulnerability in electric vehicles\u2019 Combined Charging System. They have been able attack a vehicle by cutting off the charging system 10 meters away. This was done with nothing more than \u201coff-the-shelf technology\u201d. The researchers named this attack \u201cBrokenwire\u201d and discovered that it has the ability to affect 12 million electric cars currently on the road. It has been noted that this includes electric planes, heavy-duty vehicles and ships.<\/p>\n\n\n\n
The attack is done wirelessly from afar using electromagnetic interference. It disturbs essential control communication between the charger and vehicle and allows individual or fleets of vehicles to be simultaneously interrupted.<\/p>\n\n\n\n
How has the keyless entry system affected vehicles?<\/strong><\/p>\n\n\n\n The car manufacturing company, Honda, is known to not prioritise security and as a result, a bug has been found amongst almost all Honda and Acura vehicles. The company does not incorporate any rolling code system and only uses static code systems. Therefore, there is no protection against replay attacks and, in general, no security. With this, there is a lack of security to exploit and gain control of the vehicle. The bug is known as CVE-2022-27254<\/a> and affects all remote\/wireless radio entry in Honda and Acura cars. It can allow an attacker complete control over commands such as locking, unlocking, opening trunk, controlling windows and even starting the engine. The attacker can gain a decent amount of control of the car just by capturing a signal from a key fob. If an individual locked their car and the attacker records the signal transmitted from that command, they will have the ability to replay the action. Not only that, but they also have the ability to demodulate, edit and retransmit any command they have access to.<\/p>\n\n\n\n However, Honda and Acura\u2019s are not alone in this. Several smart cars over the years have had key fob security flaws. In 2020 researchers from the Computer Science and Industrial Cryptography and the University of Leuven in Belgium have been able to break into and steal Tesla\u2019s from keyless fobs. They discovered that the use of Bluetooth Low Energy (BLE), an increasing network used in cars, is the cause of the security breach. The BLE was not properly secured and as a result they were able to compromise the key fob.<\/p>\n\n\n\n How can these be fixed?<\/strong><\/p>\n\n\n\n It seems as though the evolution of \u201csmart\u201d cars has created an increasing field of threat in security. Due to the lack of prioritization attackers can easily can access and\/or disrupt communication networks in vehicles. To prevent current and future cyberattacks automakers need to value security in their systems. This can be done by implementing various security measures such as rolling code, which can prevent various attackers from infiltrating vehicle systems.<\/p>\n\n\n\n References:<\/p>\n\n\n\n https:\/\/threatpost.com\/automaker-cybersecurity-lagging-tech-<\/a><\/p>\n\n\n\n https:\/\/github.com\/HackingIntoYourHeart\/Unoriginal-Rice-Patty<\/a><\/p>\n\n\n\n https:\/\/threatpost.com\/tesla-hacked-stolen-key-fob\/161530\/<\/a><\/p>\n\n\n\n Picture References: <\/p>\n\n\n\n https:\/\/www.kirklandhonda.com\/service-tips\/how-to-change-battery-honda-key-fob\/<\/a><\/p>\n\n\n\n![\"\"](\"https:\/\/wpsites.ucalgary.ca\/isec-601-f21\/wp-content\/uploads\/sites\/115\/2022\/04\/Honda-CR-V-key-fob-1.png\")
<\/figure>\n\n\n\n