IOActive Speeds Ahead to Secure the Transportation Industry

New research extends company’s position in connected transportation; helps partners and automotive manufacturing clients better secure customers

SEATTLE--()--IOActive, Inc., the worldwide leader in research-driven security services, today announced new research to support its Transportation Security program, which addresses all elements of connected transportation, from automobiles, to airplanes, to trains and more. IOActive is the only security services firm to conduct extensive research on a broad range of transportation in an effort to help its customers provide safer vehicles.

Today’s transportation methods are complex digital devices that require real-world cybersecurity methodologies to head off attacks before they happen. IOActive pioneered the vehicle security industry with its Vehicle Security program, and has since evolved this to include all methods of transportation. The expanded Transportation Security program is specifically grounded in years of research and working with some of the world’s largest organizations.

“As IOActive has demonstrated in our Smart Cities research, the security of our connected world depends on manufacturers and their OEM partners, as well as telecommunications companies and after-market suppliers, working together to secure products that make our lives more convenient and safe. IOActive’s transportation research allows us to better partner with these types of organizations to address their security needs in a way that no other company can,” said Chris Valasek, director of vehicle security research for IOActive.

IOActive’s Transportation Security program is part of the company’s Smart Cities and Internet of Things (IoT) initiatives and industry call to action. IOActive goes beyond directly securing customers to also partner with manufacturers, industry leaders, and lobbying groups to help drive legislation to advance the security and safety of all transportation – and all cities.

Incomparable Strength of Research

IOActive’s world-renowned researchers undertake many projects to improve the security of its Global 500 customers, both carried out in one of our multi-million dollar hardware labs or outside of our facilities. The most recent, and widely publicized, proof of concept in transportation security demonstrated how to remotely connect to a Jeep and take control of the vehicle, resulting in Fiat Chrysler taking immediate action to address the issues. Valasek and Charlie Miller, computer security engineer for Twitter, will present further information on these findings at this week’s Black Hat (August 5th at 15:00) and DEF CON (August 8th at 14:00) security conferences in Las Vegas.

IOActive’s success with in vehicle research started in 2013 when Valasek and Miller released their first research paper – Adventures in Automotive Networks and Control Units – showing they were able to take control of a Ford Escape and Toyota Prius and influence each car’s behavior.

In the months to follow they released two more papers. Car Hacking for Poories focused on reducing the barrier to entry for vehicle security assessments and eliminated the need to buy a car to conduct research. The third paper, Survey of Remote Automotive Attack Surfaces, discussed the evolution of remote attack surfaces and quantified the difficulty in executing remote attacks on a variety of vehicles.

IOActive at Black Hat USA and DEF CON 2015

In addition to Valesek and Miller’s presentations, IOActive will showcase a series of talks and activities centered on math, physics, advanced technology and SCADA at both Black Hat and DEF CON this week. Other notable sessions include an overview of proof-of-concept attacks demonstrating XSLT’s potential to affect production systems, as well as the secret power of vulnerability assessment for both security and business benefits.

In addition to the sessions at Black Hat, IOActive will host a cocktail reception at the House of Blues in Mandalay Bay on Wednesday, August 5, featuring DJ Alan Alvarez hitting the decks and violin.

On Friday, August 7, the company will host its annual IOAsis sanctuary during DEF CON. The IOAsis provides a unique opportunity for in-depth discussions with IOActive’s top researchers and hands-on demos of upcoming IOActive Labs research.

Finally, after a two-year hiatus, IOActive is bringing back its renowned DEF CON party in the form of FreakFest 2015 on Saturday, August 8, at Bally’s Blu Pool.

For more information on sessions and events, and to RSVP for any IOActive activities, please visit: http://www.ioactive.com/alerts/ioasis-las-vegas-2015.html

About IOActive

IOActive is the industry’s only research-driven, high-end information security services firm with a proven history of better securing our customers through real-world scenarios created by our security experts. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment to chip reverse engineering across multiple industries. IOActive is the only security services firm that has a dedicated practice focusing on Smart Cities and the transportation and technology that connects them. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in 1998, IOActive is headquartered in Seattle, US, with global operations through the Americas, EMEA, and Asia Pac regions. Visit www.ioactive.com for more information. Read the IOActive Labs Research Blog: http://blog.ioactive.com. Follow IOActive on Twitter: http://twitter.com/ioactive.

Contacts

IOActive, Inc.
Craig Brophy
Global PR Manager
E: PR@ioactive.com
T: 1 206 784 4313

Contacts

IOActive, Inc.
Craig Brophy
Global PR Manager
E: PR@ioactive.com
T: 1 206 784 4313