Intrusion into connected trucks and buses

Intrusion into connected trucks and buses

Shodan is an extremely powerful search engine. Unlike Google, Shodan does not search Web sites on the Internet, but directly enters the channel behind the internet. It keeps searching for all servers, cameras, printers, routers, and other devices associated with the Internet, and Shodan collects information on about 0.5 billion servers every month day and night. The information Shodan collects is extremely astonishing. All traffic lights, security cameras, home automation devices, and heating systems linked to the Internet can be easily searched.
If you search for information about Iot devices on Shodan, you will find that trucks, buses, delivery trucks, and other vehicles are equipped with a remote communication gateway and modem, you can directly connect to the Internet.
In this era of rapid Iot development, any connected device may be attacked by hackers. The security of Iot devices cannot be underestimated.
Intrude into cars
In addition, security research expert Jose Carlos Norte said that malicious attackers can use these devices to monitor and control these vehicles. Attackers can not only track the specific location and speed of a vehicle in real time, but also modify other configuration parameters of the vehicle system, such as changing the route of the vehicle, or add a roadblock to the vehicle travel path on the navigation map.


The security research expert said: "thousands of TGU devices are connected to the Internet, but there is no authentication mechanism in these devices ", in addition, you only need to access the administrator interface through the web page or telnet session. This means that as long as you have some network knowledge, you can intrude into these vehicles equipped with TGU devices ."
He also pointed out that this knowledge can be easily found on the Internet. Everyone can use the Shodan search engine to search for the schematic diagram and function introduction of the tgu device.
"As you can see, this communication device is connected to the startup system of the bus and the components such as the on-board battery. Theoretically, this will cause a very serious impact. However, since I have not yet been able to obtain the TGU device, I have not conducted in-depth research and analysis on it. However, I do not intend to test the devices currently in use, because this is a very irresponsible action for others. I suggest you do not do this ."
He said: "c4max smart box is a powerful TGU device. We only need to access port 23 on the console to control it ." He has scanned 733 open devices on the network and said the number will increase.