Home Editor's Picks GPS Spoofing Attack Hits 7 Car Manufacturers

GPS Spoofing Attack Hits 7 Car Manufacturers

GPS Spoofing Attack Hits 7 Car Manufacturers

By Wes O’Donnell
Managing Editor, InCyberDefense

The Geneva Motor Show is an annual car showcase held in March in the Swiss city of Geneva that highlights the industry’s newest innovations.

However, on March 14 Audi, Peugeot, Renault, Rolls-Royce, Volkswagen, Daimler-Benz, and BMW complained that their onboard GPS systems were all showing their location as Buckingham, England (with the year being 2036.)

According to Jalopnik, even when employees from the carmakers try to manually reset the GPS location and the date, the spoofed signals overwrite the manually-entered information.

It is unclear who is performing the attack, or why. Perhaps someone wants to show how easy it can be to spoof the GPS of a large number of cars in a given area simultaneously, and how difficult it is to stop.

If that’s the case, mission accomplished as reports from the floor say that executives from the car manufacturers are upset that their system is so vulnerable.

We recently reported on a cybersecurity firm called Grimm whose primary mission is to test vulnerabilities in cars.

While spoofing GPS may be annoying, hacking into automobiles has the potential to kill millions of drivers and passengers were a high-tech adversary to initiate a coordinated cyber strike. That’s why companies like Grimm are pioneers in embedded systems. This provides a framework to harden multiple systems simultaneously.