Electric Motorcycle and Scooter Cybersecurity Risks and Safety Concerns
Electric Motorcycles and Scooters Expose Riders to Serious Security Risks
Security experts have uncovered critical vulnerabilities in electric motorcycles from Zero Motorcycles and scooters from Yadea, which could compromise riders’ safety and security.
The Vulnerabilities:
- A weakness in Zero Motorcycles’ firmware version 44 and earlier allows attackers to gain unauthorized access to sensitive information and even control critical systems.
- A vulnerability in the Yadea T5 scooter allows an attacker to intercept legitimate key fob transmissions, enabling them to unlock and start the scooter.
According to Dinesh Shetty, director of security engineering at Bureau Veritas, “an attacker would need to be physically close to the targeted motorcycle, understand the pairing flow, and remain close until the malicious firmware upload is completed.”
The lack of patches for these vulnerabilities highlights the importance of secure development practices and timely software updates. Manufacturers advise users to take precautions to minimize the risk of exploitation, such as pairing devices in a safe location where others cannot attempt to pair simultaneously.
Implications:
- The vulnerabilities demonstrate the urgent need for robust security measures in connected devices, particularly those used for transportation.
- The increasing prevalence of Shadow AI usage in organizations underscores the importance of striking a balance between experimentation and stringent controls.
- Organizations must prioritize robust security measures and timely software updates to mitigate the risk of attacks exploiting vulnerabilities like those discovered in Zero Motorcycles and Yadea.
About Author
English