""In theory, this could be exploited to affect the bus," it said. The tests - with buses driven in underground mines to strip away external signals - were conducted both on brand-new Yutong buses and on three-year old vehicles from Dutch bus manufacturer VDL, the company said. It said the tests showed that the Dutch buses didn't have the ability to conduct over-the-air software updates, while the Chinese-made buses did."
"The Guardian newspaper, which reported on the issue, cited a statement from the Chinese company that said it "strictly complies" with the laws and rules of places where its vehicles operate. The statement said data about its buses was stored in Germany. The newspaper cited an unidentified Yutong spokesperson saying the data is encrypted and is "used solely for vehicle-related maintenance, optimization and improvement to meet customers' after-sales service needs.""
Ruter's security tests found that Yutong Group maintained direct digital access to bus control systems for software updates and diagnostics, raising concerns that such access could theoretically be exploited to affect vehicle operation. Tests were performed with buses driven in underground mines to remove external signals and compared new Yutong buses with three-year-old VDL vehicles. VDL buses lacked over-the-air update capability while Yutong buses supported OTA updates. Yutong stated compliance with local laws, said bus data is stored in Germany and described the data as encrypted and used solely for maintenance and optimization. The study responded to surveillance and EV remote-control worries.
Read at Fortune
Unable to calculate read time
Collection
[
|
...
]