Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


TomTom Pulls Windows Malware into Autos



 By: Matt Hines
2007-01-31
Article Rating:starstarstarstarstar / 1


There are 0 user comments on this Network Security & Hardware story.


  Table of Contents:
  1. TomTom Pulls Windows Malware into Autos
  2. ' Page 2 '

Rate This Article:
Poor Best
TomTom Pulls Windows Malware into Autos
( Page 1 of 2 )

By including at least two Windows viruses in its navigation software, the company may have created automotive and malware history, confirming long-held questions about the security of car-borne computer systems.

The long-running joke about cars breaking down and getting infected by viruses if they ran on Microsoft software appears to have grown closer to reality, as navigation device maker TomTom has admitted the inclusion of two Windows malware variants in one of its products.

On Jan. 29, TomTom, which is based in Amsterdam, conceded that an isolated number of its Go 910 navigation systems may have been infected with Windows malware. According to the company, the viruses, identified by security researchers including F-Secure as the Perlovga.a and Small.qp threats, do not affect the navigation performance of the handhelds.

TomTom reported that the viruses, both of which are considered by researchers to be low risk in nature, found their way into the navigation systems as they were being produced during the fourth quarter of 2006. Company officials did not immediately return calls seeking further details of the incident.

Despite the fact that the Windows viruses pose no known threat to the navigation device, which actually runs on a Linux-based operating system, experts highlighted the landmark nature of the event, as people have been predicting for years that the security issues rampant on PCs would eventually find their way into cars as more and more information technology applications are integrated into vehicles.

Resource Library:

The only real threat posed by the TomTom-borne viruses is that people connecting the devices to their PCs could be infected by the attacks. In fact, researchers at F-Secure, an anti-virus software maker based in Helsinki, Finland, said the problem was first discovered when some TomTom customers began receiving notifications from their desktop anti-virus systems when they connected the devices to their PCs. Users can link the navigation systems to desktops to save backups of their travel routes.

Security experts observed that the issue, while not a real threat to autos, is very similar to incidents experienced by Apple, Creative and fast-food giant McDonalds, each of which distributed multimedia players to customers that had malware code hidden inside them.

IBM researchers say software vulnerabilities that allow hackers to exploit popular programs will continue to rise during 2007. Click here to read more.

While such attacks have not caused problems for users, the scenario illustrates the likelihood that security problems, viruses in particular, will begin to migrate onto different machines as attackers find ways to sneak their work onboard.

The big fear with viruses finding their way into automobiles is that someone could potentially use the programs to locate vehicles, break into them, track drivers movements, or even take over navigation systems to lure someone off course and assault them or steal their car.

There is already evidence that hackers have some ability to take over some of the computerized systems offered in more advanced vehicles, with authorities in the United Kingdom contending that thieves used a laptop computer to bypass the locks and ignitions of two BMW SUVs stolen from British soccer star David Beckham in 2006.

The prevailing idea is that computer viruses could be used to do physical and financial harm to people in a manner that may be far worse than the problems caused by malware on PCs, specifically as IT is pushed into automobiles and a litany of other devices that individuals use in their daily lives.

"Its pretty interesting because weve often talked about the possibility of a car getting hit by viruses, and here its sort of happening now," said Patrik Runald, senior security specialist at F-Secure. "This is really just an embarrassment for TomTom, versus a threat, but it gives us an idea of how this sort of thing can actually happen."

Next Page: Next up: On-board entertainment systems?





  Reader Comments: TomTom Pulls Windows Malware into Autos
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Network Security & Hardware Articles          >>> More By Matt Hines
 


x}r㶲s\@♵M=Ҕl˶VlKҌפN!1E2$e~b:?qtMZe2{&-`h F; I Ӟ+ǘ[cӑGMIj}ݻ@BizNU sJe>HwW7nQ;^> \?g#Q;Y|}^~b .pѲ ⌳Qm xyO`azN1`:x =3~4dȢq/!_Cp`eF #Ϟ~b>4 .ܺa?uoczV[u&3C27 pW%X䈍YR'`>6O)L|@?AGc"S9ˡ,FpF94GݑJ5(GJ\S#x!`چ[=l*sș[?һTʪ)JwݾH CK -%ZAT\On:Y\w>./-N6Nַ߈ QT"*rp4KI hjCG'${/@B+oVQWB-b)ڑVP\G$0L" J3zĢJ :ϦuuӽiZ:8iΐ|bP+Mz(#1hؕ3Fz7G_/:nNo/9nק9ܐIə{Ά0pgs Z_Zr<-z?,rO=jZ-$5ISEp|>!9Io '|?%_]Cn&J ݒuL_;Dȟ/Rx3oF5 x%4ȌcPu t9C;L}NZZR E/<@'D P3Z$923=Pru&Sk~$M cb.L2o2|)6`I˪2TI0%mQq:]R$y3DDȽ g/3/r.i }h8yWҽT7ws 9tipv]/7+De,Ⱥ s5-waxˬ;{8k5nZ\:5[xXaZ`I). ƸD]Է7JG_)Ab/*5U95|Qnl 2XbXvP7X[A^lA0ut3#|>9Շm'!|emxZ. 3GS4!>D&Ma;Ah>[ <[ K!PA}x3V=H:}m`95$'CMߟ=s#09wښA<Qҡ4}a hp.ppyY?90d} w,gs6G~>4-0%Km;r-FaA.G))(/H.BD(ZHB!Alq [$pXxd++~Cy-#!bTLZ(ݞHt&@->hƚTL٣XB ^X/_2әJRj2m8-&D7r"e.G7Kᙖ6F5oY,*GV+WMzZ92a z {[W5ܴ ҄%(𝀜`0Ԑ(@s'<m'ȓcS@6Êi֜Ǻ 2&yJ3ӆMI|Ehs 2!jyZ&5\UXMM4fX7*p=g&.0|jj iS w$m˴)s7BgsݐC/2$\^&AB1 6d:l';oW fnR>MO9XScXO`Da Lzb0ufm/n$1`V|\uLg˦zkfXؽ/ 7R@]֥PK 2LZԵ1 E$$BY`}.eGQHīd - jInPx{8`O1k=0\Pe_M }d2waՒhXj|[Y`B^eܠQ7$XsQ[ ҆aw><:NX鹞`۩0]|m0TN#}0 ;uJkX$ M=̔:Y[ ~2.|N +e@m\:b暺8_, {guaGnJKs  4 ıLBYaX88l]3(k 2qÝa&9~ L>AS-cfDیsǙXT&/Ał4 ֚p̈́Ouo4'8o'<Ӏ!ak"A4b6 >\PXt> r+b$[8:T:$f߁RI?IL!BO{M{c>4ZUjeLFjAB;?kJo!<,`RQ8Ufjtazt=yh dEM\CNxHlW 19hv~:N(k5Pun}ɲIPёIeA:ݐ ?zwfy@Lt@qH؃L HMҜ);@+55-| I1H%[SsGEt)D ~d׃13FuMaf:k}Y\WJZP5oyEW‡v1"ር54Sf;N7w Ԫ6 h)6YS!bW hĞe~o˦IdjC鳰0%Xȓ3;pi-u QB< 6|o D >R)&q3旁Q_䑫VJ% `$fqNgA׃ϣ epv=M \=wZ o!A IǸ}|/U۶A?s3ѻMsls Kq3`93"mLt #jZ,lZǐlBO ~'A΁MO0="c^.k|Y{~4si l}ʀ>hhG2gdQrHU m{\ c4wy]c>?/$RQr+T5΀4OxR,WEzy,(U|4 BD*>"wŏ[oȧUrmVՏG~#W>U PU(V $}Vp8sZ1n?eVVW`j-^2yanE9[ 4wʨKV͖O%4e3/ -9@X<y}baHwrKz]wټހ8ZfDs, .i,: -e4g*ݐGwUkNJZZ$t` ۳<0%{q*LEM+t׀m+J9ww|L4 #uL)yHP?lZ.+BvQ *s>P|o =$Є_؆ +~W?l)ɡ$ |BJ D;}ZPf7&3 991t/xUG K L $q)YUihja{I6~G]ItmqH ۧ>\U!1@q3nn;ׇA{D.Z~`}{^i\#-HֿI·S}>dIN:axռ O8>m6Blb%%hҫoeW!؉\lj9l0 Zta^CrWkb~]ȩZU$}ݙf0iۣ^gx9[R rM̴E{wmhG(V=w)c99Xn8#ەg_BxYa1~h83ݴqC;}ҼnHS09n~%H@Rou#s5ՅO>O4dD/GNyV:7Wvkm,d1]foc_; ?--8t砞CTϑ%ɘ&BAWU-u*ln(jY9sJuOVr{ld+N$Qd17+0dƛ'q=+#{Gw{ }!F.u01쯌sTxBo~=ϸ2]a*w}o}VZtCqD &x/.)%n.eu@OKtG]_ Q{O{[#60N Ģ762cŸց!{ Rb'mMNi zc{ƹ39#@*yx\[w5&P)<A~A< v4){7yΛz}hn;d⫆ܖ~@F' zYOXW+O*OWc+ޙU>9d_'p5dnV،SLsQW E Lt/t7cXbi/۰"GsN $s8uMao oŰ֞^wVX!.&ag2Q)ԎxQ7^ܗfyl\YPJ目LCFDmRHX@ >Ħ~ }qpx?ndnR8&2OXpHKOLslcE+EO+obM9^(A?KpXp6 ;D`N|2>z8Vc"Rl ގ;ˌ^-:*bb P4g;ĩb%u-xDdId+$e%!-]ufrT ٴB |YMl1T$y9 saN[hPqe6 FK_-7ړ8c6 $&WQIJiՊ&bt \7=ލk~C˝>x{IDU~K zV-ĶSj1췜YlBI!a3ۆqɓjɺe ];3_-˗Ҥ+ƒeR! ;`a0VB# Z4wMdΟeEE7MW$E BҞNHqmHl7"+ؕ5bKR4y'5I} hcZ=o,/iJQ+%2ta$n ky_4@|$ZLu|pDr_s!Ҟs!D5IU%-^Y.0:=$% @`JKoIUE-J-K:=bF!@,ec`I՗EuƓ^{*aИDԖzq  ,Fг6>r"\m{IتZhedPB $ʖ*IB*hwI)oHJar,nx>X(-9;5@_vK$pۉlh[kFl6h)hL$vS PTrmY6onr=Dw/ {`@)×+x^^]kv8iT-QV0Q)RREQZRV tOK*DkQ8he!K헴X Jy7}7Y R+9999_ױ\ =߱˦/Mgݺ *1 tK=vÁ)(;/00|eFwױL*kbto(qHxF[  [I.H-lVkE2ˍY@S%lI/FnR 2tsnu/:eHZMT؎W $Ljh;A}K#)x[X5$/>S )A|Ru1s=ܾt}ܔutT.(Z g^&i'0&_ Ž"֖eSx&- ża iL:s=3Ws\{g'Eo"D_ m=!v{cW$W]72tмq@XDg^JV+(FlÀo9_28w"<у栰{s3T.,f[q^=L8a1p_y36Vl-IҤƩtե2jxO_yMy֨X|ﻤǺ~s~s~s~s~ER)_p5 ~7-ǂ&YX*tIkɒYƚ:A| E&z@Jy.Ѱ;T~}܆}FnrE8Zؗ>9s W oC07SEe>>~4'RKa #nlYf0JMNm V|H9The%FBU I)hnl]K;c -"}/"H::&[>0uRRxįԀ=S; :~o='#1cǁ/̮*&yMQTѨ@bXϩ/&Y>\s`Y'${mFopS%zwq6MdvdPahdY Q&! Bggkmkk x7.vр=\:gP)}J_]{v=2HOoz۫f[֟rgׄT|w ƿ2frO|k nvsEü1swA(7^@-`R#$;1kLHj~ж}A˽=V4! mY[`cXEٹ0m-mYޣ3X;G{UʒZZNLn85}nzp=W/!4S2ĆtYa+I錂qnrGN3ƚe-*517Duf點WH14- v/*`5-k;pOæ}M[tbVd=-Dw߁\īDGw=Gf ]G?ځrUt^q7 ӖcZP7] ?5ӐtrC(u8xh? * O2dW <P^?ˢ{=LDNtyQ+"]_PVôLO%$&JjidWE}$Ftyy`Dh 긺\oj[a0_V&gB8AXJrXD Ňs "K9CAKfl@Vf, \sj61R>&sjx/VQjz~zr_ZJӂ,w)]do=05֘0HtL'f>-^awn鮦TB/m< Od%p|jп{wn/1~݊+6&E=m!>}rJg+vl"6\%pKpo|{Lq -g~9~ȋ:Zjb' +KNpu0̊~%U$x[jhwy$&0 9 rۺm6R 53?b)o&,=W0r-d+jO5R`(aF .o3N A+S>c4Ddb`DU<11t+P̲jNT\OpY=XCE3  _u?VHY*o[Zn_D_t hCtMxc87aT0|LAB}d+VzK"?{|  &̋XH t<.$:sm{=~o|Lʉ?.\v CRY `Oi$~b s2vFf.BT0 (!`NVgf\n{~uC@8,9k*Cߑ7%0L}RPJQsOw "L' ]TW 3ޙGo0Osˮm YH؟0J7 t$rkqCL9 ߍ۟o{JM)`&}A~b C:΁ lZ;F(ЄG#Os3MǸZ 45@!,^C. Q?9 <6TH 1b"^ôGEӦ85Q626Faŷ^(l8*wxc||>Ǡ,T[P"bq tQ:.( o%H)YPXP؟e KHB}s 7Xh0usXg- .E.Ӈ;a8= Sܕɭِxdf,yǥ}-AG,G71=Tg0Y0غ9P2 *>G3?f_@EF?WP~Q{1?s w1'? ɐ/]n}tn7@?7Ӄ2߃2g__P>dG(U1۬r o3ڿ͠ = >kvqvJEsQ^53Ty~)Pg5(ϐge3VڍNask3ce_/ˀOq=&R+ ]Q%5Mk[I2}Wc|u(X2M*e!#(^>&c˼$=)>w懤Ix]B&JR˯-cENj9.~QxdR$8V0'f[ !3D4{HO8ѭ=RzI[xi0? ۓ{ ݯpmঠϻHލ-Ak0.: 7WW=MMy\ڎvڝGfmzumePcvdmoCdy$ٟRq6ɇv{xuCZ7Ayb^`,}Uq< 9sYu8 % HM׳pN٥8 an%gWxJ {4 duebIP*5VZ*{ "mz@FfDdU*[ZX,.g /(@#غM{%}C7<8fȳRL u+J!'\Bxkm.2Ϋ2dof2 `dQKp$vŐ@0}pTR Pcoy =s ·$rgLߟcjߴhcƥ 6%bn1vkC']sPL,3i t3Εq Ʊ تGѨswӦB~` ̀tWȕ&3b" >oٔ^^C N*˗ X627 ;|9 [2FdX jXJr l;9' ]-c˃]">sR:=fՇg4yxaw. ]C_ND]NO !0![l,)1{;KH.Ny 0t;'Sr&\tEeבe$&J1wj=S%nFD֣cs߱iB  xle>ao5RFX׻ 괻SFcͅx{pn0AN@U}C 1,9%)^[#|FMPL\?O=;2pΖl'OSq1^R[aʹD.vUlv[h* b9?v"ㅰx/Z^y|XqE*9"[o %@A$៴;Xq+Nvޒ{־( ;C? ׹ҽ;Ks\6LDR}F0~N]V0N^@? `nwfx͛'cLc0ŬBCh=)O?6o'[nG\<>biESL/c<%z@n0$ / ixE C2zdz$_Oxƪ~Saxr=F dm-IS`"r8I ]SFc ?dtE#b[p!@>PEg*R8WD KQ)YBAł?Qg;i\) 3/: Ǣ8BU(]ۼ#6s/>^|˼kAўYnw0w>Lxm-1k8~m=fu9Vڕ*zYD1e~}=3Ӳg(q#2,@zPތpP=k+Wei$ցiVG[mx: uuky!.1:7 ˟]~Tqٮ7(GѦi#W®u4-oveѩ&ߩn QaW_<tcb3,ۙB ya1 g'{y{~kC'> kw==Y}#s!?²Lj3mg^^kte(n aaXÙw\8+[Ѐ7H>Y{PE"1s1Gg=zk|XKc.&Ա`=br8Lte4Q3|JKm)g3 τ ixv4<5@TF_E@G7dyUĄfٵ\RJnrmmkJ >dS1C'@j0\| H d9[\O^مt&3k/YH~>  \99.@$NSP_Xџ],?I*g\ƕySq|l\7,sݗΚWO<|XEx(~']f(FRqO\|j_t.;71X7/=n|~p}*-EKBܜ D>V<=m_'+e={`os g|oUAtMjez'14mEg,(3lW'5X-lu; o]jm٦d U4s_jjVJ6