Skip to main content
  1. Home
  2. Cars
  3. Car News

Big truck hijacking vulnerability should be a wake-up call to trucking industry

By

Big trucks are more vulnerable to hacking than cars. In preparation for the Usenix Workshop on Offensive Technologies (WOOT ’16) security event in Austin, Texas, next week, researchers from the University of Michigan’s Transportation Research Institute hacked multiple systems in a big rig truck to demonstrate its vulnerability, according to Wired.

In 2015, another team demonstrated taking over a Jeep Cherokee remotely via the vehicle’s Uconnect cell-based system. That remote hijack sent a loud wake-up call to the consumer car world. Hijacking trucks and buses may be even easier. Individual automakers and car models from the same manufacturer use different codes, but most commercial trucks — from tractor trailers and school buses to garbage trucks and cement mixers — use the same communication standard. Once you know how to hijack one big truck, you can use the same codes with most others.

Recommended Videos

“These trucks carry hazard chemicals and large loads. And they’re the backbone of our economy,” researcher Bill Hass said. “If you can cause them to have unintended acceleration … I don’t think it’s too hard to figure out how many bad things could happen with this.”

Related: 
The 8 best TVs for gaming in 2025, as vetted by our experts

The team created several videos showing how they took control of various systems in a truck and a school bus. The researchers interfered with braking systems, took control of engine RPMs, and sent faulty readings to dashboard indicators.

The common link between the vehicles was the J1939 open standard used by the on-board diagnostic systems (OBDS). The Michigan team used a laptop while sitting in the vehicles to access the vehicles’ system via the diagnostic port for this demonstration project, not via a wireless connection, but the point was made.

Heavy trucks, just like consumer vehicles, increasingly connect to the outside world via cell-phone and other systems. Breaking through to the OBDS via remote wireless remains a further step, but according to Wired, another study found trucks vulnerable to remote attack via an insecure location-tracking dongle.

WOOT ’16, which takes place during the Usenix Security Symposium, August 10-12, is a two-day workshop of presentations on cryptographic attacks, mobile threats, evading malware detection, creative denial of service, vehicle hacking, and other security threats and issues, to bring them to the attention of affected industries and security firms that serve them.

Bruce Brown
Bruce Brown
Former Contributing Editor
Bruce Brown Contributing Editor   As a Contributing Editor to the Auto teams at Digital Trends and TheManual.com, Bruce…
Topics
Plug-in hybrids are becoming more popular. Why? And will it continue?
Kia Niro EV Charging Port

There's a lot of talk about the idea that the growth in electric car sales has kind of slowed a little. It's not all that surprising -- EVs are still expensive, early adopters all have one by now, and they're still new enough to where there aren't too many ultra-affordable used EVs available. But plenty of people still want a greener vehicle, and that has given rise to an explosion in hybrid vehicle sales.

That's especially true of plug-in hybrid vehicles, which can be charged like an EV and driven in all-electric mode for short distances, and have a gas engine as a backup for longer distances or to be used in combination with electric mode for more efficient driving.

Read more
EV drivers are not going back to gas cars, global survey says
ev drivers are not going back to gas cars global survey says screenshot

Nearly all current owners of electric vehicles (EVs) are either satisfied or very satisfied with the experience, and 92% of them plan to buy another EV, according to a survey by the Global EV Drivers Alliance.

The survey of 23,000 EV drivers worldwide found that only 1% would return to a petrol or diesel car, while 4% would opt for a plug-in hybrid (PHEV) if they had to replace their car.

Read more
Trump team in sync with Tesla on ending crash-reporting requirements, report says
Beta of Tesla's FSD in a car.

The transition team of President-elect Donald Trump is planning to end existing car-crash reporting requirements to safety regulators, according to a Reuters report.

The report cites a document obtained by Reuters that lays out the transition team’s 100-day strategy for automotive policy. In the document, the team says the crash-reporting requirement leads to “excessive” data collection, Reuters says.

Read more