BMW fixes security flaw (+ RR & MINI ): Motoring Motoring Discussion forum

Motoring Discussion > BMW fixes security flaw (+ RR & MINI )	Miscellaneous
Thread Author: henry k	Replies: 2

View Threaded

New Tue 3 Feb 15 09:49

BMW fixes security flaw (+ RR & MINI ) - henry k

BMW has patched a security flaw that left 2.2 million cars, including Rolls Royce and Mini models, open to hackers.

www.bbc.co.uk/news/technology-31093065

Reply to this message | Report message

New Tue 3 Feb 15 12:32

BMW fixes security flaw (+ RR & MINI ) - Boxsterboy

But this is a different flaw to the flaw with Keyless entry/'keyless start which is how so may X5s (and Range Rovers, etc.) have been stolen, isn't it?

Reply to this message | Report message

New Tue 3 Feb 15 12:34

BMW fixes security flaw (+ RR & MINI ) - rtj70

Yes it is a different flaw. The biggest surprise is they used HTTP and not HTTPS and didn't do any sort of checks. Therefore potential to hijack the connection. What you had to do was spoof a mobile phone network for the ConnectedDrive to connect to.

Reply to this message | Report message

Forum Version 3.0 - By Khoosys