Tesla Backs Up Car Security Firmware

Tesla is an American based automotive and Energy Storage company founded in 2003. This Multi National Corporation specialises in designing, manufacturing and selling electric cars, battery products and electric vehicle power train components. The sole motive of this premium electric-car brand is to accelerate world’s transition to sustainable energy and move towards zero- emission future.Tesla Backs Up Car Security Firmware
Tesla is renowned worldwide for its security-aware attitude. The infamous hardware and firmware manufacturer is known to focus on improving the security of their products and service offerings. Taking the security advantage to the next level, Tesla recently disclosed its safety and protection guidelines. As per the disclosed guidelines, Tesla Backs Up Car Security Firmware. The manufacturer of the infamous electric vehicles welcomes researchers to probe software in its cars for security bugs.

Directives for Engagement 

The participating researchers need to register themselves as well as seek registration for research-registered vehicle on Tesla’s Vulnerability reporting website to carry out the research. They are also  required to comply with the following guidelines to avoid any legal actions against them. These include:
  • On finding vulnerabilities, researchers are required to validate the vulnerability and share it with the company’s representatives along with a Proof of Concept (POC).
  • Researchers are strictly recommended not to make the vulnerability details public unless corrected.
  • The Modus Operandi should be conducted only on the vehicles that you have permission to access.

Tesla Backs Up Car Security Firmware

If while performing good-faith security research, researchers cause a software glitch, Tesla provides provision to ‘Reflash” the vehicle’s firmware at its service centre to restore vehicle’s software.
Also, pre-approved, good-faith security researchers are exempted from Computer Fraud and Abuse Act (“CFAA”) and Digital Millennium Copyright Act (“DMCA”).
CFAA: Computer Fraud and Abuse Act (CFAA) is a United States cyber security Bill enacted in 1986. The law prohibits the access of the system without authorization or in excess of authorization.
DMCA: Digital Millennium Copyright Act is a United States copyright law enacted in 1998.  The law criminalizes production and dissemination of services, technology or devices intended to deceive or control access to copyrighted works. The car manufacturing brand exempts its pre-approved researchers from this law provided they do not access any other codes or binaries.
Tesla Backs Up Car Security Firmware and provides such security slacks to its researchers to encourage them to find bugs and make its products more secure.
If the vulnerability discovered by the researcher is confirmed, they are promised amazing rewards. Besides their name will be listed on Tesla’s Hall of Fame (unless they prefer to remain anonymous).
However, in case the researcher breaches the security guidelines provided by Tesla, the company reserves the right to unregister the researcher and the research-registered vehicle at any time. The agenda adopted by Tesla car manufacturers helped in identifying severe security breaches. For instance:
  • Hot-Wire Stealing: Thanks to this bounty program! Researchers prevented your $100,000 vehicle from being embezzled by the thieves.hot-wire
As a part of this program researchers found that the car could be stolen by plugging in the laptop into a network cable, futz with the cables, establish a network connection and start the car with a software command and drive off. The vulnerability was discovered in world’s first ever premium electric Sedan-the Model S.
Read Full News:- Click here

Comments

Post a Comment

Popular posts from this blog

How to remove Speedtest-guide.com redirect from your system

Image
Guide to Remove Speedtest-guide.com redirect Speedtest-guide.com redirect is a nasty browser hijacker that changes the default browser settings such as home-page, search engine & new tab functionality. In addition to that, it displays annoying ads & causes infuriating redirects to dubious sites, thus deteriorating the web-browsing experience. This rogue browser redirector claims to be a free tool that can be used to test Internet speed & customize the web search. It also enables the users to keep a track of the previous tests & access speed boosting tips. While Speedtest-guide.com appears to be a useful & legit application, the users have reported of its questionable behavior. Firstly, to operate on a system, it requires modifying the browser settings without user’s permission. It does so to promote a fake search engine - Speedtest-guide.com. It causes unnecessary browser redirects & possesses the capability of tracking down user’s online
Read more

The novel DNS protocol helps Mozart Malware evade detection

Image
The nasty Mozart Malware has made a major comeback in the cyber-world. Yes, the devious malware known for infecting the Home Depot Inc, United States & breaching data is now using a novel DNS protocol to communicate with the remote hackers. This new DNS Protocol is also being used by Mozart Malware to remain under the radar of security solutions & other intrusion detection systems. Read on to know more about this backdoor malware. The First Attack of Mozart Malware Mozart malware made its first appearance in September 2014 after it hacked the Home Depot Inc., United States. According to the sources, this earlier unknown & unseen malware was specifically crafted to attack the Home Depot, the largest home development vendor in the United States. The word “Mozart” was observed in the software’s malicious code& it is suspected to have connections with the hacker’s system, the sources state. Read Full Article
Read more

How to remove ZUpdater.exe Trojan from your system?

Image
Guide to Remove ZUpdater.exe Trojan - ZUpdater.exe Trojan is a nasty threat to the Windows OS based devices. It uses the infected system’s resources to generate illicit crypto currency without the user’s permission or knowledge. Software Bundling & Free Programs are the prime methods used by ZUpdater.exe Trojan to proliferate its infection. Some of the free downloads offered on the internet do not reveal if other software is being installed in the background. Thus, they easily make their way into the system without user’s consent. Once ZUpdater.exe virus is installed, it consumes over 90% of the CPU’s power & graphics card power of the targeted system. This way, it makes the system extremely sluggish & deteriorates the performance of the PC. According to cyber-security analysts, while the system is running slow, hackers use computer’s resources to generate illicit revenue for themselves. Victims from around the world are looking for ways to remove
Read more