TweakTown
Tech content trusted by users in North America and around the world
5,934 Reviews & Articles | 38,239 News Posts

Tesla packs technology into vehicles, but needs to improve security

The Tesla S vehicle is packed with technology, but there are some security issues that need to be addressed (NASDAQ:TSLA)

| Hacking & Security News | Posted: Apr 1, 2014 2:14 am

Tesla vehicles have generated a large amount of interest and controversy across the United States, though is in the headlines for a rather unexpected reason: a potential cybersecurity issue with the Tesla S vehicle.

 

TweakTown image news/3/6/36678_01_tesla_packs_technology_into_vehicles_but_needs_to_improve_security.jpg

 

The iPhone app for Tesla vehicles, which allows owners to control door locks, braking system, sunroof and other car functions, uses only a one-factor authentication system.

 

"The point here (and subsequent attack vectors) is that Tesla needs to implement an authentication mechanism that is beyond 1-factor," said Nitesh Dhanjani, security researcher, in a statement. "Attackers shouldn't be able to use traditional and well known attack vectors like phishing to remotely locate and unlock a $100K+ car built-in 2014."

 

Tesla's website doesn't have a limit to customer login attempts, allowing criminals to try and brute force their way in - something that will likely be fixed in the near future.

 

"In cases where the attacker is able to hack another website, he or she can use the usernames and credentials from the compromised accounts to attempt them on Tesla's website and APIs given that users have the tendency to reuse passwords."

NEWS SOURCESThreatpost.com, Cloudfront.mediamatters.org

Related Tags

Further Reading: Read and find more Hacking & Security news at our Hacking & Security news index page.

Do you get our news RSS feed? Get It!

Post a Comment about this news

Latest Tech News Posts

View More News Posts

TweakTown Web Poll

Question: Facebook's acquisition of Oculus VR will...

Improve Oculus Rift Development

Hamper Oculus Rift Development

Completely destroy Oculus Rift Development

Let's wait and see, I'm not sure

or View the Results

View More Polls

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases