"Patched Flaw in Bosch Diagnostic Dongle Allowed Researchers to Shut Off Engine"
Researchers at Argus Cyber Security, a firm dedicated to researching automobile security, has discovered two vulnerabilities within Bosch’s Drivelog Connect OBD-II dongle and the smartphone app that would allow the engine of a vehicle to be shut off or disabled by hackers. These vulnerabilities can be exploited to send malicious messages to the Controller Area Network bus, which manages the communication between the vehicle’s controllers and devices. This article further discusses the functionalities of the dongle device, how the connection between the dongle device and an app would allow this hack to be performed, BOSCH’s intent to improve security, as well as the risk of third-party connections to vehicle systems.
Threatpost reports "Patched Flaw in Bosch Diagnostic Dongle Allowed Researchers to Shut Off Engine"