A new year and a new vulnerability

A teenager reported having found a flaw in a limited number of Tesla vehicles [1,2] allowing him the ability to remotely control some vehicle functions, such as unlocking doors and windows, starting Keyless Driving and deactivating their security system. It started...

What have we learned in automotive cybersecurity from 2021?

Well, the number of ransomware attacks clearly increased in 2021 and it certainly seems like no sector is safe from it, not even the automotive sector. Sometimes multiple sectors get affected, as for example with the Colonial Pipeline attack against oil infrastructure...

CVE-2021-44228 – Log4Shell, a vulnerability shaking the web

Log4j is a popular and widely spread java logging tool incorporated in many services across the web making potentially everyone using Log4j a possible victim, including Apple, Twitter, Steam, Tesla and probably many other car manufacturers and suppliers. The...

A date for the AutoSec Yearly Conference has been set to March 9, 2022.

The event will be at Lindholmen in Gothenburg, Sweden. We aim for a physical event but will also offer an online opportunity. A complete agenda will be published later but results from the CyReV project are expected to be presented. If you book your travel and hotel...