It's the curse of the connected car once it's linked to the Internet, it's, well, on the Internet. In the case of the Tesla Model S, this means that malicious hackers could, in theory, control some functions of the vehicle and even track it without the owner's knowledge.
Tesla offers Android and iPhone apps for Model S owners, which can be used to check the vehicle's battery, track its location and status, and tweak several other settings, like climate control and the sunroof. It can also be used to unlock the doors on the Model S.
Dell senior engineer George Reese says the REST API used by Tesla to provide access for Android and iPhone apps has several fairly serious security flaws, which could offer a way in for unscrupulous hackers.
According to an article written by Reese for O'Reilly, Tesla appears to have broken from accepted best practice when designing the API for the Model S.
To read this article in full or to leave a comment, please click here
ConversionConversion EmoticonEmoticon