BMW’s car computer systems have been found to contain 14 separate flaws, according to a study by a Chinese cyber-security lab.
They could, in theory, let hackers take at least partial control of affected vehicles while in use.
The researchers identified ways to compromise the cars by plugging in infected USB sticks, as well via contactless means including Bluetooth and the vehicles’ own 3G/4G data links.
BMW is working on fixes.
Its customers have been advised to keep an eye out for software updates and other counter-measures from the German company over the coming months.
Keen Lab – a division of the Chinese technology giant Tencent – began its investigation in January 2017 and shared its findings with BMW just over a year later.
It said the vulnerabilities were found mostly within three different parts of the cars’ electronics:
■ the internet-connected infotainment systems – which provide sat-nav guidance, radio-station playback, car diagnostic information, and in some cases voice-recognition services
■ the telematics control unit – the electronics and software that allow a vehicle’s location to be tracked
■ the central gateway module – the information bridge that controls the flow of data between the vehicle’s various electrical components
The researchers are holding back their full findings until 2019, to give BMW more time to tackle the problems.
Source: BBC News
