by Kevin Killough at justthenews.com
In September, thousands pagers and walkie-talkies held by members of Hezbollah exploded. The incident appears to have been the result of explosives hidden within the batteries of the devices by Israel’s intelligence service, Mossad, and the Israeli military, then triggered remotely.
While the devices appear to have been physically modified, the incident highlights a security concern for electric vehicles. The vehicles have a number of safety systems to prevent the battery from catching fire, and the battery packs in the vehicles are much larger than any hand-held device. Those safety systems run on software that can be hacked. When large lithium-ion battery packs catch fire, the result can be anywhere between a smoldering fire lasting months or something more explosive.
Roy Fridman, CEO and chief revenue officer for C2A Security, an Israel-based cybersecurity company focused on the automotive industry, said that one automaker told him that the software that controls a motor has 2 million lines of code. And that’s just the motor.
“You have hundreds of millions of lines of code inside a vehicle. If you were talking about autonomous vehicles, it’s even more. But the number of lines of codes in a vehicle is continuously growing,” Fridman told Just the News.
He said that in addition to the lines of code in the vehicle’s software there are also wireless connections to the internet for software updates, connections to charging infrastructure. And there are connections to the electricity grid for vehicle to grid technology, which allows EV owners to sell their energy storage capacity to grid operators.
“The more communication protocols you have, the more lines of code you have, the more you are susceptible to controlling something that will trigger events that are … let’s call it malicious,” Fridman said.
The Heritage Foundation released a report recently that included a proposal that Chinese-made EVs be banned. Software to remotely disable cars already exists inside American-made vehicles, and the report argues such a tactic could be used maliciously by a foreign adversary.
In addition, cybersecurity experts are looking closely at the possibility that EVs could be hacked to cause all kinds of problems. This includes stealing personal information, such as credit card and banking information during charging station transactions, or possibly making the battery catch fire.
Fridman said that the complexity of the vehicle and supporting infrastructure, as well as all the communications involved, creates a lot of opportunities to influence what’s happening inside the vehicle.
“I believe, in my personal opinion, there is a constellation in which you can create a battery overload and disable some of the protective mechanisms,” he said.
In 2002, David Colombo, a tech security specialist, hacked into 25 Teslas around the world using a third-party application. He was able to take control of multiple features including turning the car on and off, locking and unlocking the doors, getting the vehicle’s precise location, and changing temperature settings inside the car. He even made the vehicles play YouTube videos by 80s pop star Rick Astley, a meme called “rickrolling.”