Monday January 20, 2020
Home Lead Story Hackers Win T...

Hackers Win Tesla Car For Exposing System Error

The EV-maker was fairly quick to fix vulnerabilities exposed by white hat hackers

0
//
Tesla CEO Elon musk, board
Tesla CEO Elon Musk. (VOA)

Electric Vehicle (EV)-maker Tesla had to give away one of their Model 3 cars and $35,000 prize money to a group of hackers after they managed to crack its system during a hacking event.

Amat Cama and Richard Zhu of team Fluoroacetate exposed a vulnerability in the vehicle system during the Pwn2Own 2019 hacking competition, organised by Trend Micro’s “Zero Day Initiative (ZDI)”, held here this week.

The hackers targeted the infotainment system on the Tesla Model 3 and used a “JIT bug in the renderer” to take control of the system, Electrek reported on Saturday.

Charging problems with electric car
Tesla cars recharge at a Tesla station at a shopping center in Charlotte, N.C., June 24, 2017. Buyers of Tesla’s luxury models have access to a company-funded Supercharger network. VOA

“Since launching our bug bounty programme in 2014, we have continuously increased our investments into partnerships with security researchers to ensure that all Tesla owners constantly benefit from the brightest minds in the community,” the report quoted David Lau, Vice President of Vehicle Software at Tesla as saying.

Also Read- Smokers Notice Health Warnings More on Plain-Packaged Cigarettes

As part of Tesla’s bug bounty programme, the company had given away hundreds of thousands of dollars in rewards to hackers who exposed vulnerabilities in its systems.

The EV-maker was fairly quick to fix vulnerabilities exposed by white hat hackers, the report said. (IANS)

Next Story

Microsoft Works To Fix Security Bug Issue in Internet Explorer

The vulnerability was found in how Internet Explorer handles memory

0
Microsoft
Overall, Microsoft said all supported versions of Windows are affected by the flaw, including Windows 7, which after this week will no longer receive security updates. Pixabay

 Microsoft has confirmed a security flaw affecting Internet Explorer is currently being used by hackers and it is working on a fix, to be released at a later date.

The vulnerability was first reported by US Homeland Security on Friday evening, although the issue is not limited to American devices. Overall, Microsoft said all supported versions of Windows are affected by the flaw, including Windows 7, which after this week will no longer receive security updates.

The vulnerability was found in how Internet Explorer handles memory. An attacker could use the flaw to remotely run malicious code on an affected computer, such as tricking a user into opening a malicious website from a search query or a link sent by email, TechCrunch reported recently.

“The company is only aware of limited targeted attacks for which it is already working on a fix,” the report quoted a Microsoft spokesperson. The tech giant assigned the bug with a common vulnerability identifier, CVE-2020-0674, but specific details of the bug have yet to be released.

Qihoo 360, a China-based security research team helped Microsoft in finding this flaw and it is believed to be a similar vulnerability as one disclosed by Mozilla, the maker of the Firefox browser.

As per report, neither Qihoo, Microsoft, nor Mozilla said how attackers were exploiting the bug, who the attackers were, or who was being targeted. Microsoft assigned the bug with a common vulnerability identifier, CVE-2020-0674, but specific details of the bug have yet to be released.

Microsoft
Microsoft has confirmed a security flaw affecting Internet Explorer is currently being used by hackers and it is working on a fix, to be released at a later date. Pixabay

Additionally, according to information gathered by PreciseSecurity.com, Microsoft Office products were the most commonly exploited by cybercriminals around the world and nearly 73 per cent of cyber exploits were performed in MS Office products in the third quarter of 2019.

ALSO READ: Tesla Owners Unintentionally Buy Software Updates, Face Troubles in Getting Refunds

MS Office products were followed by Browsers with 13.47 per cent of the total number of exploits by cybercriminals, Android with 9.09 per cent, Java with 2.36 per cent, Adobe Flash with 1.57 per cent and PDF with 0.66 per cent. (IANS)