Supporting Event: Joint ICT Christmas Party (14 Dec 2018)

Supporting Event: Joint ICT Christmas Party (14 Dec 2018)

Joint ICT Christmas Party Date:  14 Dec 2018 (Fri)Time:  5:45-7:00pm (registration starts at...

Modern Endpoint Security (5 Dec 2018)

Modern Endpoint Security (5 Dec 2018)

Modern Endpoint Security Date: 5-Dec 2018 (Wed)Time: 7:15pm - 9:00pmVenue: ADC 203, HKU SPACE...

Supporting Event: Building Your Open Source Intelligence Capabilities (7 Nov 2018)

Supporting Event: Building Your Open Source Intelligence Capabilities (7 Nov 2018)

Building Your Open Source Intelligence Capabilities Date:  7 Nov 2018 (Wed)Time:  09:30 -...

  • Supporting Event: Joint ICT Christmas Party (14 Dec 2018)

    Supporting Event: Joint ICT Christmas Party (14 Dec 2018)

  • Modern Endpoint Security (5 Dec 2018)

    Modern Endpoint Security (5 Dec 2018)

  • Supporting Event: Building Your Open Source Intelligence Capabilities (7 Nov 2018)

    Supporting Event: Building Your Open Source Intelligence Capabilities (7 Nov 2018)

(ISC)2 HK Chapter AGM cum Feature Talk: Remote Attacks on Vehicles by Exploiting Vulnerable Telematics

Time: 2:00 pm to 4:30 pm
Date: 14 Jan, 2017 (Sat)
Venue: Room Z414, Block Z, The Hong Kong Polytechnics University
Language: English
Registration: https://goo.gl/ViXjmZ

Agenda:

  1. Remote Attacks on Vehicles by Exploiting Vulnerable Telematics by Mr. Lei Xue
  2. (ISC)2 Local Chapter Update
  3. Review of the activities of (ISC2) Hong Kong Chapter in 2016
  4. Election of the (ISC2) Hong Kong Chapter's 2017 committee members

Highlight:

We discover severe vulnerabilities in popular telematics systems, through which attackers can remotely replace their firmware with the malicious one and then launch attacks on the vehicles. We have confirmed these vulnerabilities through POC attacks on real vehicles. Moreover, we propose several approaches for fixing these vulnerabilities. We have informed the corresponding companies about the vulnerabilities and the fixing approaches with the help of HKCERT. In this talk, we first introduce the background knowledge of telematics and its attack surface. Then, we detail how to identify and exploit the vulnerability in two telematics systems. Moreover, we discuss how to fix this vulnerability.

Speaker:

Lei Xue is a PhD student in the Department of Computing, the Hong Kong Polytechnic University, working with Dr. Daniel Xiapu Luo. He has been working on network and system security for many yearsand published several papers in top venues (e.g., ICSE, INFOCOM, etc.). His current research interests include network and mobile security.

One CPE can be claimed for the (ISC2) Credential Holder.
For any questions, please contact us at This email address is being protected from spambots. You need JavaScript enabled to view it.