Tesla suffered a cyberattack, researchers from the Chinese tech company Tencent discovered a number of flaws that, when combined, gave them remote access to a Tesla Model S and the ability to operate the sunroof, dashboard, door locks, and even the brake system.
The approach gave the researchers access to the controller area network (CAN) bus, which enables communication between the car's specialized computers.
They investigated the incident and fixed the potential vulnerabilities.
TPRM report: https://scoringcyber.rankiteo.com/company/tesla-motors
"id": "tes22172722",
"linkid": "tesla-motors",
"type": "Vulnerability",
"date": "09/2016",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'industry': 'Automotive',
'location': 'Global',
'name': 'Tesla',
'size': 'Large',
'type': 'Corporation'}],
'attack_vector': 'Remote access to the controller area network (CAN) bus',
'description': 'Researchers from the Chinese tech company Tencent discovered '
'a number of flaws that, when combined, gave them remote '
'access to a Tesla Model S and the ability to operate the '
'sunroof, dashboard, door locks, and even the brake system.',
'impact': {'operational_impact': 'Potential loss of control over critical car '
'functions',
'systems_affected': ['Sunroof',
'Dashboard',
'Door locks',
'Brake system']},
'initial_access_broker': {'entry_point': 'Remote access to the CAN bus',
'high_value_targets': ['Sunroof',
'Dashboard',
'Door locks',
'Brake system']},
'investigation_status': 'Resolved',
'motivation': 'Research',
'post_incident_analysis': {'corrective_actions': 'Fixed the potential '
'vulnerabilities',
'root_causes': 'Vulnerabilities in the CAN bus'},
'response': {'remediation_measures': ['Fixed the potential vulnerabilities']},
'threat_actor': 'Tencent Researchers',
'title': 'Tesla Model S Cyberattack',
'type': 'Cyberattack',
'vulnerability_exploited': ["Remote access to car's specialized computers"]}