Access Denied

This page requires users to be logged in and using a specific plan to access its content.

If you believe this is an error or need help, please contact
support@cybernewscentre.com


Login or Sign Up
⭠ Back

Tesla Hacked In Paid Tokyo Automotive Competition

Add to favourites
Remove from favourites
Loading...
At the Pwn2Own Automotive 2024 event, organised by Trend Micro's Zero Day Initiative, a hacker team secured a $200,000 reward for successfully identifying and exploiting vulnerabilities in a Tesla's cellular modem and infotainment system. 
Copy Page Link
Thomas Ricardo - Cyber Analyst Reporter
February 9, 2024

https://www.cybernewscentre.com/plus-content/content/tesla-hacked-in-paid-tokyo-automotive-competition

You have viewed 0 of your 5 complimentary articles this month.
You have viewed all 5 of your 5 complimentary articles this month.
This content is only available to subscribers. Click here for non-subscriber content.
Sign up for free to access more articles and additional features.
Create your free account
follow this story

Hackers Win Big for Exposing Tesla Vulnerabilities at Automotive Cybersecurity Event

At the Pwn2Own Automotive 2024 event, organised by Trend Micro's Zero Day Initiative, a hacker team secured a $200,000 reward for successfully identifying and exploiting vulnerabilities in a Tesla's cellular modem and infotainment system. 

This competition, aimed at uncovering and addressing potential security gaps in automotive technologies before they can be exploited maliciously, awarded over $1 million in total prizes. 

The event, held in Japan, saw participants challenge the security of automotive electronics, with the winning team, Synacktiv, earning a cumulative $450,000 for their expertise in breaching various car-related technologies, including charging stations and a Sony infotainment system. 

The initiative emphasises the importance of cybersecurity in the automotive industry by rewarding hackers for finding flaws and ensuring these vulnerabilities are shared with manufacturers for remediation, thereby enhancing the safety and reliability of automotive technologies in the face of evolving cyber threats.

The Risk With EVs

There's no doubt electric vehicles come numerous advantages to their counterparts, such as lower emissions and reduced cost over time. However, the also open up new opportunities for hackers to exploit them.

As recently as 2023 Eagers Automotive, one of Australia's largest car dealership groups, was hacked. Recently they released a statement confirming the incident:

“The company can now confirm that the incident involved unauthorised access to parts of the company’s IT systems by a third party, which accessed some data from our servers”
“The disruption is primarily impacting the company’s ability to finalise transactions for certain new vehicles which have been sold and are ready for delivery, and some aspects of the company’s service and parts operations.”

Whist the incident did not directly affect electric vehicle systems, accessing a dealership's IT systems is a step too close to comfort to compromising the cars.

Several officials have already held a forum to discuss how to manage any potential vulnerabilities, especially regarding power grids and charging.

With the US looking bolster electric vehicle (EV) adoption events such as Pwn2Own become so much more important.

Hackers Win Big for Exposing Tesla Vulnerabilities at Automotive Cybersecurity Event

At the Pwn2Own Automotive 2024 event, organised by Trend Micro's Zero Day Initiative, a hacker team secured a $200,000 reward for successfully identifying and exploiting vulnerabilities in a Tesla's cellular modem and infotainment system. 

This competition, aimed at uncovering and addressing potential security gaps in automotive technologies before they can be exploited maliciously, awarded over $1 million in total prizes. 

The event, held in Japan, saw participants challenge the security of automotive electronics, with the winning team, Synacktiv, earning a cumulative $450,000 for their expertise in breaching various car-related technologies, including charging stations and a Sony infotainment system. 

The initiative emphasises the importance of cybersecurity in the automotive industry by rewarding hackers for finding flaws and ensuring these vulnerabilities are shared with manufacturers for remediation, thereby enhancing the safety and reliability of automotive technologies in the face of evolving cyber threats.

The Risk With EVs

There's no doubt electric vehicles come numerous advantages to their counterparts, such as lower emissions and reduced cost over time. However, the also open up new opportunities for hackers to exploit them.

As recently as 2023 Eagers Automotive, one of Australia's largest car dealership groups, was hacked. Recently they released a statement confirming the incident:

“The company can now confirm that the incident involved unauthorised access to parts of the company’s IT systems by a third party, which accessed some data from our servers”
“The disruption is primarily impacting the company’s ability to finalise transactions for certain new vehicles which have been sold and are ready for delivery, and some aspects of the company’s service and parts operations.”

Whist the incident did not directly affect electric vehicle systems, accessing a dealership's IT systems is a step too close to comfort to compromising the cars.

Several officials have already held a forum to discuss how to manage any potential vulnerabilities, especially regarding power grids and charging.

With the US looking bolster electric vehicle (EV) adoption events such as Pwn2Own become so much more important.

Get access to more articles for free.
Create your free account
Business & Money
Cyber Security
Articles
No items found.
Tesla
Electric Vehicles
Cars
Vulnerabilities
Hide Me
Business & Money
Cyber Security
Articles
Global
No items found.
No items found.
No items found.
Tesla
Electric Vehicles
Cars
Vulnerabilities
Tesla
Electric Vehicles
Cars
Vulnerabilities
Briefs

Growing Cyber Threats: SEA and Other U.S. Airports Face Escalating Attacks

The New Oil: AI and the Geopolitical Consequences of Technological Control

The Promise and Pitfalls of OpenSource AI in Europe

AI Regulation: The Global Dilemma for G7, G20, and Commonwealth Nations

Related
In this mid-week edition of CYBER BITES, we dive into Iran’s cyberespionage group "Pioneer Kitten" collaborating with ransomware gangs, the massive "RockYou2024" password leak endangering billions, urgent warnings on NHS cybersecurity gaps, and the U.S. offering a $2.5M bounty for a notorious malware distributor.
Complimentary
Free
Opinion
Editor's Pick

Cyber Bites - Cyber Espionage, Malware Exploits, and Global Security Gaps

Kicking off the week on Monday, August 12th, cybersecurity news starts with a bang as U.S. District Judge Amit Mehta ruled that Google violated antitrust laws, a decision that could drastically reshape the tech giant's future.
Complimentary
Free
Opinion
Editor's Pick

Google Violates Antitrust Laws, Cyber Vulnerabilities Rise, And OpenAI Exodus

The major cyberattack that led to a significant Microsoft Azure outage, a high-stakes prisoner swap involving Russian cybercriminals and U.S. journalists, and Google's urgent patching of an Android zero-day vulnerability.
Complimentary
Free
Opinion
Editor's Pick

Cyber Scan Weekly Wrap: Azure Outage, Spy Exchange, and Android Vulnerability

More Cyber News