Automotive

GPS

Update: Two Years After Discovery Dangerous Security Hole Lingers in GPS Services

Security researchers warned of a serious vulnerability in a GPS service by the China-based firm ThinkRace exposes sensitive data in scores of GPS services, more than two years after the hole was discovered and reported to the firm. (Update: added comment from John van den Oever, the CEO of one2track B.V – PFR 1/3/2018)

connected vehicles

Podcast – Smart Vehicle Security: A Report from the Lab

In-brief: In this Security Ledger podcast, Paul speaks with Sameer Dixit of Spirent Security Labs, a leading tester of connected (“smart”) vehicles. Truly secure, connected vehicles may be years away, he says. In the meantime, security flaws and poorly implemented features are a major issue, Dixit says, with many car companies still preferring bolt on security fixes over secure design. 

Report: Major Upgrade, Investments Needed to Secure Connected Vehicles, Infrastructure

In-brief: a report by the Cloud Security Alliance calls for a bottom up remake of infrastructure to support connected vehicles and warns of more, serious attacks as connected vehicles begin interacting with each other and with connected – but insecure – infrastructure. 

Fixing farm equipment

Right to Repair on the Ropes in Minnesota | Motherboard

In-brief: Proposed legislation to prevent manufacturers from denying owners and independent repair people to fix and maintain software-based products is being sidelined by opposition from private firms like equipment maker John Deere, Motherboard reports.

IBM Launches Watson Internet of Things Consulting Practice

In-brief: IBM unveiled IoT focused consulting services to encourage use of its Watson IoT platform. The company is targeting industries including automotive, insurance, retail and electronics.