Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Application Security

11/7/2019
07:30 AM
By Alex Wawro, Special to Dark Reading
By Alex Wawro, Special to Dark Reading
News
50%
50%

Black Hat Q&A: Hacking a '90s Sports Car

Security researcher Stanislas Lejay offers a preview of his upcoming Black Hat Europe talk on automotive engine computer management and hardware reverse engineering.

Communicating with your car and building your own tools is easier than you think, and well worth the effort, says Stanislas Lejay who will be briefing attendees in London at Black Hat Europe next month on Unleashing the Power of My 20+ Years Old Car. It's a fun and fascinating look at Lejay's efforts to bypass the speed limiter (set at ~180 km/h) and still pass inspection.

Lejay opens up to Dark Reading about the process, what he learned, and what Black Hat attendees can look forward to in his Briefing.

Alex: Tell us a bit about how you got into cybersecurity, and what you're currently working on.

I went to a computer engineering school in France (EPITA) and followed the normal 5-year course. However, in the middle of my second year, a senior showed me a book called "Hacking: The Art of Exploitation" that I started reading "just for fun." But as I was reading, I found it fascinating to try to think the other way around to break code, and make it do stuff it was never designed to do.

So I started learning reverse engineering and exploitation in my free time. (We didn't have any class related to that until the fourth year, if you choose the infosec specialization.) I started participating in a few capture the flag competions (CTFs), ROPing in my own code, and just trying to see how far I could go. I played with console hacking, emulation, firmwares, and eventually started working on cars.

A few years, projects and conferences later, I work as an automotive computer security engineer near Tokyo and fiddle with my own cars' engine control units (ECUs) in my spare time.

Alex: What inspired you to pitch this talk for Black Hat Europe?

Stanislas Lejay: This talk is a result of a real-life project I had going on, with a real purpose. I think that talking about a project with successes and failures, and a clear goal in sight, is the best way to actually get people interested in stuff they wouldn't bother learning about otherwise. People seemed to enjoy my last talk about "car hacking," so while writing an article about it is nice, being able to show it to an audience and exchange thoughts on the subject afterward sounds even better.

Alex: Any fun anecdotes about fiddling with your cars in Japan?

Stanislas Lejay: Well, so far it can still pass "Shaken" (the mandatory car inspection every two years) because my system doesn't modify the ECU and is basically just a bypass circuit that I can activate or not with a switch. So, in regard to the law, my car is still 100% stock but for "a few additional wires and microcontrollers." All my cars are still road-legal, so far, as it is one of my main concerns when modifying them. So no, sorry, no fun anecdote on that side!

Alex: What do you hope Black Hat attendees will get out of seeing your talk?

Stanislas Lejay: While this talk doesn't expose anything new, even less knowing that the car is 20 years old, it should still let people get an idea of how fun it is to play with cars, what you can do with them, and that most aftermarket tools you can buy for pretty high prices are not witchcraft. Communicating with your car and building your own tools for it is actually not that hard and can help you get a lot of insights, for cheap, on what's going on in your car when you actually drive it.

Get more information on Lejay’s Briefing and lots of other cutting-edge content in the Briefings schedule for Black Hat Europe, which returns to The Excel in London December 2-5, 2019. For more information on what’s happening at the event and how to register, check out the Black Hat website

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
TerryWilliams
50%
50%
TerryWilliams,
User Rank: Apprentice
11/13/2019 | 12:01:15 PM
thanks
very useful information
charlesemorris
50%
50%
charlesemorris,
User Rank: Apprentice
11/12/2019 | 2:05:55 AM
Re: thank for somuch
wow
anthonydrobbins
50%
50%
anthonydrobbins,
User Rank: Apprentice
11/8/2019 | 2:45:57 AM
thank for somuch
hihihi
Commentary
Ransomware Is Not the Problem
Adam Shostack, Consultant, Entrepreneur, Technologist, Game Designer,  6/9/2021
Edge-DRsplash-11-edge-ask-the-experts
How Can I Test the Security of My Home-Office Employees' Routers?
John Bock, Senior Research Scientist,  6/7/2021
News
New Ransomware Group Claiming Connection to REvil Gang Surfaces
Jai Vijayan, Contributing Writer,  6/10/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: Zero Trust doesn't have to break your budget!
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-32243
PUBLISHED: 2021-06-16
FOGProject v1.5.9 is affected by a File Upload RCE (Authenticated).
CVE-2021-32244
PUBLISHED: 2021-06-16
Cross Site Scripting (XSS) in Moodle 3.10.3 allows remote attackers to execute arbitrary web script or HTML via the "Description" field.
CVE-2021-32245
PUBLISHED: 2021-06-16
In PageKit v1.0.18, a user can upload SVG files in the file upload portion of the CMS. These SVG files can contain malicious scripts. This file will be uploaded to the system and it will not be stripped or filtered. The user can create a link on the website pointing to "/storage/exp.svg" t...
CVE-2021-34201
PUBLISHED: 2021-06-16
D-Link DIR-2640-US 1.01B04 is vulnerable to Buffer Overflow. There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640). Local ordinary users can overwrite the global variables in the .bss section, causing the process crashes or changes.
CVE-2021-34203
PUBLISHED: 2021-06-16
D-Link DIR-2640-US 1.01B04 is vulnerable to Incorrect Access Control. Router ac2600 (dir-2640-us), when setting PPPoE, will start quagga process in the way of whole network monitoring, and this function uses the original default password and port. An attacker can easily use telnet to log in, modify ...