Security flaws found in popular EV chargers
U.K. cybersecurity company Pen Test Partners has identified several vulnerabilities in the APIs of six home electric vehicle charging brands and a large public EV charging network. While the charger manufacturers resolved most of the issues, the findings are the latest example of the poorly regulated world of Internet of Things devices, which are poised to become all but ubiquitous in our homes and vehicles.
Vulnerabilities were identified in the API of six different EV charging brands — Project EV, Wallbox, EVBox, EO Charging’s EO Hub and EO mini pro 2, Rolec and Hypervolt — and public charging network Chargepoint. Security researcher Vangelis Stykas identified several security flaws among the various brands that could have allowed a malicious hacker to hijack user accounts, impede charging and even turn one of the chargers into a “backdoor” into the owner’s home network.
The consequences of a hack to a public charging station network could include theft of electricity at the expense of driver accounts and turning chargers on or off.
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/archetype/CTKYCDUFNBE4NPJAVZFAZHVNCE.jpg)
