Nissan Disables Leaf Companion App After Discovery of Security Loophole
| Phenny Lynn Palec | | Feb 27, 2016 11:34 AM EST |
(Photo : Reuters) Nissan has disabled the companion app of its Leaf vehicle after a security researcher found a loophole in it.
Japanese car manufacturer Nissan has announced that it is completely deactivating the smartphone companion app for its Leaf electric vehicle. The decision to disable the app was made after security researchers found out that hackers could take advantage of a loophole and use the app to remotely control the car.
Like Us on Facebook
The app called NissanConnect EV allows Nissan Leaf owners to remotely charge their electric vehicles. The app also allows owners to control the air conditioning and heat of the car.
The security loophole on the NissanConnect EV app was discovered by Australian security researcher Troy Hunt. In a research conducted by Hunt, he was able to connect to a remote Nissan Leaf in the United Kingdom and was able to activate the car's temperature controls as well as pull up recent driving information stored on the car.
Hunt found out that in order to remotely control the car, he simply needed to know the specific vehicle identification number (VIN) of the car. Without the VIN, the hack will not work. While this might be a silver lining, Hunt discovered that the VIN on every Leaf car is the same except for the last five digits. This means that any hackers can simply provide five numbers to the end of a Leaf VIN and randomly hack any car somewhere in the world.
Hunt noted that the Leaf hack does not allow hackers to control any part of the car's driving mechanism. This thankfully eliminates the possibility of hackers forcing the car into an accident. However, Hunt added that hackers could use the exploit to drain the car's battery by repeatedly activating the air conditioner.
Hunt claims that he alerted Nissan about the security loophole but the company took no action. Nissan only took drastic actions and disable the app when Hunt's research started to garner attention.
Hunt told the BBC that, "Disabling the service was the right thing to do given it appears it's not something they can properly secure in an expeditious fashion."
Tagsnissan, Nissan Leaf, Nissan hack, Nissan Leaf hack, Nissan Leaf VIN, Leaf hack, Leaf VIN
©2015 Chinatopix All rights reserved. Do not reproduce without permission
EDITOR'S PICKS
-
Did the Trump administration just announce plans for a trade war with ‘hostile’ China and Russia?
-
US Senate passes Taiwan travel bill slammed by China
-
As Yan Sihong’s family grieves, here are other Chinese students who went missing abroad. Some have never been found
-
Beijing blasts Western critics who ‘smear China’ with the term sharp power
-
China Envoy Seeks to Defuse Tensions With U.S. as a Trade War Brews
-
Singapore's Deputy PM Provides Bitcoin Vote of Confidence Amid China's Blanket Bans
-
China warns investors over risks in overseas virtual currency trading
-
Chinese government most trustworthy: survey
-
Kashima Antlers On Course For Back-To-Back Titles
MOST POPULAR
LATEST NEWS
Zhou Yongkang: China's Former Security Chief Sentenced to Life in Prison
China's former Chief of the Ministry of Public Security, Zhou Yongkang, has been given a life sentence after he was found guilty of abusing his office, bribery and deliberately ... Full Article
TRENDING STORY
China Pork Prices Expected to Stabilize As The Supplies Recover
-
Elephone P9000 Smartphone is now on Sale on Amazon India
-
There's a Big Chance Cliffhangers Won't Still Be Resolved When Grey's Anatomy Season 13 Returns
-
Supreme Court Ruled on Samsung vs Apple Dispute for Patent Infringement
-
Microsoft Surface Pro 5 Rumors and Release Date: What is the Latest?
