RSS Alerts

Share

More services

Related Stories

  • Sorry Vladimir, our bad: Water pump ‘hack’ just equipment failure
    The contractor who helped install the industrial control system for the Curran-Gardner Public Water District in Springfield, Illinois, said the water pump allegedly hacked by the Russians in fact just burned out.
  • Phone Hacking Scandal: Who's Getting the Message?
    In the wake of the tabloid cellphone hacking scandal, have operators really closed all the loopholes that let snoopers intercept our communications? Jim Mortleman investigates
  • Securing the Friendly Skies
    Aviation security and information security are inextricably linked. So much of what makes up aviation security depends on sound information security; encompassing the protection of intelligence, procedural, systems, and network data. For all-too-obvious reasons, much of what goes on behind the scenes at airports with respect to information security is a closely guarded secret, whether it is the alphabet soup of governmental agencies in play or the airlines themselves. Drew Amorosi reports
  • Weekly Brief, March 8, 2010
    Infosecurity US rounds up the significant events from the last week.
  • Can Security and Privacy Co-exist?
    Should you have to give up privacy to get more security, or does one actually support the other? Danny Bradbury sounds out the experts
    Members' Content

Top 5 Stories

News

Disgruntled employee accused of remotely disabling over 100 cars

18 March 2010

You've heard about Apple potentially bricking iPhones, but that's small potatoes, compared to remotely disabling whole fleets of cars using centrally controlled computer systems. That's just what a 20-year-old employee for a Texas auto dealership is being accused of doing after he was laid off last month.

According to a report by Wired, Omar Ramos-Lopez, a former employee at the Texas Auto Center, was arrested after allegedly using a web-based vehicle immobilization system to stop cars sold by the dealership from working.

The Auto Center reportedly used a system from Pay Technologies called Webtech Plus. Designed to remotely disable cars whose owners are behind on their payments, the system can be made to remotely honk a car's horn, or to prevent it from being started up.

Ramos-Lopez is said to have had his account on the system closed when he left, but commentators close to the situation said that he gained access using another employee's password. He was then allegedly able to set up a database of 1100 customers who had purchased vehicles from the Center's four dealership lots, said the Wired story. He was able to disable the cars and set off their horns.

Customers were calling the dealership in a confused state, asking why their horns were honking, and were forced to disconnect their batteries, said reports.

Cars controlled by the Webtech Plus system are manipulated using a hardware device installed behind the dashboard, which is sent instructions via a wireless pager network. Cars cannot be stopped while they are in motion.

According to Texas Auto Center manager Martin Garcia, Ramos-Lopez was "pretty good with computers", although the alleged hacker couldn't have been that good; investigators tracked him down by finding an IP address for offending Webtech sessions in system logs. You'd have thought that someone going to those lengths to gain revenge on a former automative employer would have taken the road less traveled, and perhaps researched something like Tor before sparking up their browser.

This article is featured in:
Identity and Access Management  • Internet and Network Security • IT Forensics • Malware and Hardware Security • Wireless and Mobile Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012