Developers of the entertainment unit in the Hyundai Ioniq didn’t seem to follow the sample code they were using. They reused an RSA code-signing key pair from an example, rather than generating their own.
3/: It’s only the entertainment unit, right?
— @Richi 🤓 Jennings (@RiCHi) August 25, 2022
But it’s a #Linux computer with full access to the car’s critical #CANbus.
In this week’s #SSBlogwatch we’re frightened by the implications.
For @ReversingLabs’ @SecuredSoftware: https://t.co/WQK6Z3lPW0
No comments:
Post a Comment