Your non-connected car is not as safe as you think...

Presented at THOTCON 0xA (2019), May 4, 2019, 11 a.m. (50 minutes)

A few years ago, many attacks targeting connected cars have been published producing a high impact on the community. Today people are aware that their "smart"car might be remotely hacked and that is true. However, believing that non-connected cars (without WiFi, 5G, Bluetooth, etc.) are safe or unhackable is a mistake. Non-connected cars may be backdoored through the OBDII port, letting an attacker control them remotely by injecting malicious CAN frames on the in-vehicle network known as CAN bus. Have you ever imagined the possibility of your non-connected car being attacked remotely to alter its speed, lights status, security systems or any other module? Even more, have you ever imagined the possibility that your non-connected car suddenly stopped working, when you least expected it, due to a remote attack? All of this is possible. Let me introduce you to "The Bicho", a very smart backdoor to remotely control non-connected cars.


Presenters:

  • Sheila A. Berta as Sheila Berta
    Sheila Ayelen Berta is an Information Security Specialist and Developer, who started at 12 years-old by herself. At the age of 15, she wrote her first book about Web Hacking, published by RedUSERS Editorial in several countries. Over the years, she has discovered lots of vulnerabilities in popular web applications and software. She also has given courses of Hacking Techniques in universities and private institutes. Sheila currently works as Security Researcher who specializes in offensive techniques, reverse engineering and exploit writing. She is also a developer in ASM (microcontrollers, x32/x64), C/C++ and Python. Sheila is an international speaker who has spoken at important security conferences such as Black Hat EU 2017, DEFCON 26, DEFCON 25 CHV, HITBSecConf, HackInParis, Ekoparty Security Conference, IEEE ArgenCon, Hack.Lu, OWASP Latam Tour and others.

Similar Presentations: