Zero-Dzvanya, iko kushandiswa kunoshandiswa nedrone kubira Tesla 

Nyanzvi mbiri dzekuchengetedza cyber dzakaburitswa Munguva pfupi yapfuura ndiani akakwanisa kuvhura mikova yeTesla ari kure, uchishandisa drone yakagadzirirwa Wi-Fi dongle. Vatsvaguriri vakapa kwavo kuita pamusangano weCanSecWest nekucherechedza kuti ivo vaisada chero kudyidzana kubva kune chero munhu ari mumotokari.

Izvo zvinonzi kushandisa kwe "Zero-Dzvanya" inoitwa pasina kusangana neumwe mushandisi. Kamwe yaiswa, iwe unogona kurekodha ambient kurira uye kutaura kwefoni, kutora mafoto, uye kuwana mushandisi zvitupa, pakati pezvimwe zvinhu.

Zvikanganiso zvakapihwa nevanoongorora nezvekuchengetedza cyber Ralf-Philipp Weinmann, CEO weKunnamon, naBenedikt Schmotzle, weComsecuris, ndizvo chaizvo mhedzisiro yeongororo yakaitwa gore rapfuura. Tsvagiridzo yakatanga yaitwa sechikamu chemakwikwi Pwn2Own 2020 kubira, kupa mota uye mimwe mibairo yepamusoro yekubira Tesla.

Izvozvo zvakati, mhedzisiro yacho yakataurirana yakanangana naTesla kuburikidza nehurongwa hwayo hwemubairo yezvikanganiso mushure mePwn2Own varongi vakasarudza kubvisa kwechinguva chikamu chemotokari nekuda kwedenda rekonavirus.

Kurwisa, kwakatumidzwa TBONE, zvinoreva kushandiswa kwekusagadzikana kuviri inokanganisa ConnMan, internet yekubatanidza maneja emidziyo yakadzika. Kushushikana kuviri muConnMan kwakatendera Weinmann naSchmotzle kuita mirairo pane Tesla's infotainment system.

Mune blog blog, Weinmann naSchmotzle vakatsanangura kuti munhu anorwisa anogona kushandisa mikana iyi kuti atore infotainment system. kubva kuTesla pasina kusangana kwevashandisi. Anorwisa anoshandisa kusagadzikana anogona kuita chero basa iro rinowanzoitwa nemushandisi kubva kune infotainment system.

Izvi zvinosanganisira kuvhura magonhi, kushandura pekugara, kuridza mimhanzi, kudzora mamiriro ekunze, uye nekushandura mamodhi

Zvisinei, vaongorori vakaona kuti kurwisa kwakatadza kutora mota. Vakataura kuti kushandisa kwacho kwakapesana nemhando dzaTesla's S, 3, X, uye Y. Nekudaro, mune yavo posvo, vakajekesa kuti vangadai vakaita zvakanyanya nekunyora kodhi muTesla's infotainment tekinoroji. Weinmann akanyevera kuti kushandisa kwacho kwaigona kuve kwakashanduka kuita honye. Izvi zvinogoneka nekuwedzera feat ingadai yakavatendera kuti vagadzire iyo nyowani nyowani yeWi-Fi firmware paTesla, "ichiita nzvimbo yekuwana iyo inogona kushandiswa kushandisa dzimwe mota dzeTesla dziri padhuze."

Zvisinei, vaongorori vakasarudza kusaita kurwisa kwakadai.

"Kuwedzera kukwirisa kweropafadzo yakadai seCVE-2021-3347 kuenda kuTBONE kwaizotibvumidza kurodha firmware itsva yeWi-Fi mumotokari yeTesla, ichiita nzvimbo yekugona kushandisa dzimwe mota dzeTesla dziri padhuze ne mota yemunhu akuvara. Zvisinei, hatina kuda kushandura kuita uku kuva gonye remakomputa, ”akadaro Weinmann. Tesla akagadzirisa kusagadzikana neyakagadziridzwa yakaburitswa muna Gumiguru 2020 uye zvinonzi yakamira ichishandisa ConnMan.

Intel yakaziviswawo, sezvo kambani yaive yekutanga kuvandudza yeConnMan, asi vaongorori vakati iye chipmaker akafunga kuti raive risiri basa rake kugadzirisa zvikanganiso.

Vatsvagiri vaona kuti chinhu cheConnMan chinoshandiswa zvakanyanya muindasitiri yemotokari, izvo zvinogona kureva kuti kurwisa kwakafanana kunogona kutangwa kupokana nedzimwe mota. Weinmann naSchmotzle vakapedzisira vatendeukira kuGerman National Computer Emergency Response Team (CERT) kuti ibatsire kudzidzisa vanopa rubatsiro.

Hazvisati zvazivikanwa kana vamwe vagadziri vatora matanho mukupindura. kune zvakawanikwa nevaongorori. Vatsvakurudzi vakatsanangura zvavakawana pamusangano weCanSecWest pakutanga kwegore rino. Mumakore achangopfuura, vaongorori vezvekuchengetedza cyber kubva kumakambani akasiyana siyana vakaratidza kuti Tesla inogona kubiwa, muzviitiko zvakawanda zviri kure.

Muna 2020, nyanzvi dzekuchengetedza paMcAfee dzakaratidza mafashita anokwanisa kumanikidza Tesla kuzvimiririra kutyaira basa kuti riwedzere kumhanya kwemota. Bugs dzakagadziriswa muna Gumiguru gore rapfuura, zvinoreva kuti kuba hakufanirwe kuitika nhasi.

mabviro: https://kunnamon.io


Izvo zviri muchinyorwa zvinoomerera pamisimboti yedu ye tsika dzekunyora. Kuti utaure chikanganiso tinya pano.

Iva wekutanga kutaura

Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa.

*

*

  1. Inotarisira data: AB Internet Networks 2008 SL
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako

bool (chokwadi)