In-brief: One of every five software vulnerabilities discovered in vehicles in the last three years are rated “critical” and are unlikely to be resolved through after the fact security fixes, according to an analysis by the firm IOActive.
Automotive
Auto Industry Publishes Best Practices for Cybersecurity
In-brief: An Automotive industry information sharing group has published Best Practices” document, giving individual automakers guidance on improving the cybersecurity of their vehicles.
ENISA Looking for Help with Cybersecurity Policies For Autos
In-brief: The EU’s leading information privacy and security group will be issuing a report on smart car security and is soliciting feedback from auto industry suppliers and experts.
Update- Zero to 60: Experts Divided on Wisdom of Fiat Chrysler’s Bounty
In-brief: Security experts are divided on Fiat Chrysler’s new bug bounty program, with some decrying small dollar awards, while others argue the company may have moved far too quickly in offering cash rewards to begin with.
Fiat Chrysler Launches Public Bug Bounty – But It’s Not All That
In-brief: Fiat Chrysler Automobiles (FCA) has unveiled a public “bounty” program that will pay security researchers up to $1,500 dollars for information on vulnerabilities in software used in conjunction with the company’s vehicles. Don’t get too excited.
