Bluetooth zero day vulnerabilities recently discovered by Armis Labs leave vehicles at high risk of a remote cyber-attack.
The vulnerabilities, collectively named BlueBorne, can potentially be used to perform ransomware attacks on vehicles, or worse, take complete control over them.
BlueBorne exploits can be highly infectious as demonstrated in the Armis Labs report and in the video below.
(Armis labs has identified a new attack vector called “BlueBorne.” Courtesy of Armis and YouTube)
Attacks using this vulnerability can spread wirelessly and penetrate devices through their Bluetooth connections, without the need for pairing with the infected device.
With more than 50,000 hours of automotive cyber security research, Argus has revealed a tremendous number of vulnerabilities in Bluetooth, WiFi, and cellular connections, in design vulnerabilities inherent in vehicle components, third-party dongles, and in software updates.
With this extensive automotive cyber security knowledge, Argus designed and developed Argus Connectivity Protection to protect vehicles from cyber-attacks no matter how they penetrate the vehicle, including against vulnerabilities like the BlueBorne buffer overflow.
(Learn More about Argus Cyber Security, courtesy of Argus and YouTube)
Argus Connectivity Protection includes multiple security modules to harden the target system, detect intrusions, and prevent malicious exploits of vehicle infotainment and telematics units.
“The BlueBorne discovery is just one more example of the vulnerability of connected cars to cyber threats,” explains Oron Lavi, Argus Co-Founder and VP of R&D.
“By integrating multiple layers of security, the automotive industry can protect vehicles and drivers from exploits and attack vectors like BlueBorne and others.”
“While operating system (OS) hardening is critical, it is only one part of the Argus Connectivity Protection solution suite.”
“To secure vehicles from cyber-attacks for the duration of their lifespan, our connectivity protection security modules build on advanced detection, prevention and mitigation techniques to work stand-alone and with Argus in-vehicle and cloud solutions to provide seamless, end-to-end protection.”
Argus provides the automotive industry multi-layered solutions that are market-ready and comply with existing standards and imminent US legislation on vehicle cyber security that mandates intrusion detection and prevention systems (IDPS).
With Argus, automakers can assess and manage risks, embed security throughout vehicle design and production and protect them throughout their lifetime.
Argus, the global leader in automotive cyber security, provides comprehensive and proven solution suites to protect connected cars and commercial vehicles against cyber-attacks.
Ranked number one in third-party evaluations, Argus technologies are built on dozens of pending and granted automotive patents that illustrate innovative security methods, proven computer networking know-how and decades of experience in both cyber security and the automotive industry.