The Murder of Michael Hastings
Those still wondering what really happened in gonzo journalist Michael Hastings’ fiery demise likely sat up straight during 60 Minutes’ recent piece on how hackers can hijack the controls of a car.
After Hastings died in a bizarre one-car crash along a straight Los Angeles street, former counterterrorism adviser Richard Clarke noted the accident was “consistent with a car cyber attack” and that it was easy to hack cars. It seems he was right, as 60 Minutes demonstrated in a chilling fashion.
In the segment, a nervous Lesley Stahl smashed into safety cones on a driving course after two men using a laptop computer remotely commandeered her brakes. Former video game developer Dan Kaufman, who’s now working for the Defense Advanced Research Projects Agency, set up the demonstration.
In trying to figure out what kinds of attacks enemies might be plotting on American soil, government agencies are learning the same techniques. To wrest the controls from Stahl, a hacker dialed in through the vehicle’s OnStar system to first busy up the computer, then planted code that allowed it to reprogram the control systems. Kaufman stood by giving driving orders to the hackers.
The demonstration underscored what Clarke, counterterrorism chief under both Bill Clinton and George W. Bush, said after Hastings’ crash. “You can do some really highly destructive things now, through hacking a car, and it’s not that hard,” he said. “So if there were a cyber attack on the car—and I’m not saying there was—I think whoever did it would probably get away with it.” Clarke added that the LAPD was unlikely to have the tools necessary to detect such an attack, particularly after a fire.
No Crowbar Needed, Just an iPad
One thing is clear: Drivers are at risk.
In a stinging report released this week, Massachusetts Democratic Sen. Edward Markey slammed car companies for their failure to protect car owners from hackers and intrusive data collectors who might seize control of increasingly computerized vehicles. “Automakers haven’t done their part to protect us from cyber-attacks or privacy invasions,” he said.
Much of the report focuses on how car computers can be used to collect driving history, from where a car is parked to where it traveled. But it also reveals hackers’ ability to remotely turn, stop and accelerate cars. Markey’s report notes that car companies can now disable vehicles if owners fall behind on their payments. Burglars can exploit the same vulnerabilities.
Leave a Reply